RaccoonStealer botnet controller @206.189.100.203

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

RaccoonStealer botnet controller located at 206.189.100.203 on port 80 (using HTTP GET):
hXXp://206.189.100.203/wavesf

Referencing malware binaries (MD5 hash):
26895e53b9a4a15fb3339a5172ebed4d — AV detection: 29 / 70 (41.43)
7b54ea7ef3102ab2cbc740fb2031b62a — AV detection: 28 / 66 (42.42)
9a2cf101ac43e20ba31f4aa6930fec0d — AV detection: 29 / 70 (41.43)
a07ad3541c3a67dd84387a10c608fcac — AV detection: 45 / 70 (64.29)
a1093c0472566068451be63ad406734f — AV detection: 47 / 69 (68.12)
a16c1bd0bae5d3c78d300854488aacb4 — AV detection: 42 / 69 (60.87)
a3bb620eb6967a37a53edbb3a1173b2f — AV detection: 40 / 64 (62.50)
ae2beb0e3fedcf41ebbf26d9f7536236 — AV detection: 24 / 63 (38.10)
b75e79ec73d5b0ce7127bd1226fb11be — AV detection: 38 / 66 (57.58)
dcc0e4042a17c9497222e40880d67982 — AV detection: 24 / 62 (38.71)

Добавить комментарий

Ваш адрес email не будет опубликован.