RedLineStealer botnet controller @65.108.14.118

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 65.108.14.118 on port 15253 TCP:
$ telnet 65.108.14.118 15253
Trying 65.108.14.118…
Connected to 65.108.14.118.
Escape character is ‘^]’

$ nslookup 65.108.14.118
65-108-14-118.serverhub.ru

Referencing malware samples (MD5 hash):
0a509e3ea3c1d1a6a778c6a4fd2f2c8f — AV detection: 42 / 68 (61.76%)
1a5f7d3a19cffe1edea547193df4aa21 — AV detection: 40 / 57 (70.18%)
950c6b87e1bb3df00a70c46575e55c24 — AV detection: 39 / 69 (56.52%)

Опубликовано
В рубрике hetzner.de

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *