RaccoonStealer botnet controller @185.3.95.153

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

RaccoonStealer botnet controller located at 185.3.95.153 on port 80 (using HTTP GET):
hXXp://185.3.95.153/capibar

$ nslookup 185.3.95.153
185-3-95-153.ip.linodeusercontent.com

Referencing malware binaries (MD5 hash):
041e5cda57c8db6f67f754250cd71b91 — AV detection: 29 / 69 (42.03)
8673a9d723844b1d3504e1cedd4da3d8 — AV detection: 30 / 70 (42.86)
fcadeab6c2f9706be6e9fff15bfbe6ad — AV detection: 35 / 67 (52.24)

Опубликовано
В рубрике linode.com

Добавить комментарий

Ваш адрес email не будет опубликован.