RedLineStealer botnet controller @141.94.188.139

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 141.94.188.139 on port 43059 TCP:
$ telnet 141.94.188.139 43059
Trying 141.94.188.139…
Connected to 141.94.188.139.
Escape character is ‘^]’

Referencing malware samples (MD5 hash):
2853908eb84e04fb6f89067d3f11c13b — AV detection: 21 / 68 (30.88%)
4074642723dd3d87f30ac5d2e9a387fe — AV detection: 22 / 67 (32.84%)
432e0aa89b16204307d034dbb0bf5934 — AV detection: 9 / 66 (13.64%)
483dbdff19dff44df034bdad3129cab7 — AV detection: 21 / 68 (30.88%)
4e9369d450438e15962feb5859a43339 — AV detection: 16 / 68 (23.53%)
5388ed0de71db1389304a499b6b6c123 — AV detection: 20 / 67 (29.85%)
5ab565b8cc26200383ac00492fdbbf91 — AV detection: 21 / 67 (31.34%)
9f19843326d34b281d0e2bef69adfe1c — AV detection: 32 / 67 (47.76%)
a240934096cdcdc1c04eddf93c812a34 — AV detection: 33 / 68 (48.53%)
a3da6dfbe07f4b41c546e30c8ad4f905 — AV detection: 26 / 67 (38.81%)
a458d224d11a5ae9ea2ba48d39f01d54 — AV detection: 19 / 67 (28.36%)
a5f43af922ad7864a3e7dbb98d7da638 — AV detection: 17 / 67 (25.37%)
a908b1b756ca4add1136b4e59ec9d34a — AV detection: 16 / 67 (23.88%)
a912c4e315713f50c7f3b17b508d06ac — AV detection: 34 / 69 (49.28%)
a9f162397dca7689137e428bfb39aaad — AV detection: 38 / 67 (56.72%)
aa2b24cde5d3d157724efb2e115dc2da — AV detection: 33 / 66 (50.00%)
ac077b4c1af227bae75d0b5d25c616f2 — AV detection: 44 / 68 (64.71%)
afb05bd91f08ecc5b7c585892e757eb9 — AV detection: 39 / 67 (58.21%)
b216d3ef1f67fcc649048aaf60280bd8 — AV detection: 30 / 68 (44.12%)
b3a75daffbf600a32f7550fad015f5c3 — AV detection: 24 / 69 (34.78%)
b48682ae3d4ce81a14986e5c5c97962d — AV detection: 24 / 68 (35.29%)
ba3581cd235eec704cc63575f546cebc — AV detection: 20 / 69 (28.99%)
bf6721392ed3453d0644d8c811e8a426 — AV detection: 15 / 67 (22.39%)
cb48d1752e06edda2d8edeb63f5eae93 — AV detection: 22 / 68 (32.35%)
d492af0d6f8a0cd37c6b4efd4c3c72a7 — AV detection: 10 / 67 (14.93%)
ddf915c0db7dec3f938081164d5312e7 — AV detection: 35 / 67 (52.24%)
dfe1f6881bc4a08b4490425d40e677e5 — AV detection: 38 / 62 (61.29%)

Опубликовано
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован.