RedLineStealer botnet controller @104.21.95.21

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 104.21.95.21 on port 443 TCP:
$ telnet 104.21.95.21 443
Trying 104.21.95.21…
Connected to 104.21.95.21.
Escape character is ‘^]’

my-all-group.bar 104.21.95.21

Referencing malware samples (MD5 hash):
02892518516aed817405e4e67aef72b2 — AV detection: 38 / 68 (55.88%)
0667ace8cf940d7d56d3aa7ed7fe87e2 — AV detection: 46 / 69 (66.67%)
0a509e3ea3c1d1a6a778c6a4fd2f2c8f — AV detection: 42 / 68 (61.76%)
21a0dbfd7390af7cf0c45599fd64f7b0 — AV detection: 38 / 69 (55.07%)
2cce5533ec8f52ac272dee02e36c3260 — AV detection: 44 / 65 (67.69%)
354a12f67db00e618d2f71140f4259f7 — AV detection: 28 / 68 (41.18%)
401358d510a50b4e174c1f3abaf3bc0e — AV detection: 38 / 67 (56.72%)
5242345c42ee4ceaa8fae3d2c439f224 — AV detection: 43 / 68 (63.24%)
58ecff4987136b922cc6d1dc523fd6d9 — AV detection: 22 / 68 (32.35%)
6e8bd77ef9a471ba28938b259e9cb609 — AV detection: 51 / 68 (75.00%)
6eabd6f7073ec2dc122c6b79310b1be9 — AV detection: 44 / 69 (63.77%)
71412e1e9139ef39f99cd61dd34b1122 — AV detection: 26 / 68 (38.24%)
745f2a6ae8c3bfce8fdde3d39d788ea7 — AV detection: 38 / 67 (56.72%)
7aa969fdffd0eb3a6d909fb1ef6a5a4c — AV detection: 36 / 68 (52.94%)
7bf1a9ce32851c40625730a89f1b32a3 — AV detection: 49 / 69 (71.01%)
9d12dce28ca94fad977d57b1109941d3 — AV detection: 25 / 69 (36.23%)
a0c8da8c027e72bde129e39b1c827497 — AV detection: 37 / 68 (54.41%)
a241a33e334dd245a7e4ba374d5fbacf — AV detection: 37 / 69 (53.62%)
a6a013b7be6c347e236c65e3e1c97970 — AV detection: 35 / 68 (51.47%)
a6ba5fc790a5f555b8b6f28e7837253c — AV detection: 38 / 69 (55.07%)
a889b3b0fdadcf170f50b189d28f76a5 — AV detection: 35 / 69 (50.72%)
a8f9047cc84b4d10fc44debdddccd78d — AV detection: 34 / 68 (50.00%)
a97c8c767343939c63ab2c3a7f9186fd — AV detection: 27 / 68 (39.71%)
b0fd10ea697a84d539bea9739ac866f0 — AV detection: 28 / 61 (45.90%)
b18376cdfde39afc30262dc2209fcde6 — AV detection: 30 / 68 (44.12%)
b1fe9c7c953b2a356b705fb4eb08cba8 — AV detection: 37 / 69 (53.62%)
b3a714b786ef46b7676e68e6dd68a389 — AV detection: 54 / 69 (78.26%)
e4244f6bce3dec6d895562f93442fbbb — AV detection: 31 / 68 (45.59%)