RedLineStealer botnet controller @65.108.76.11

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 65.108.76.11 on port 37014 TCP:
$ telnet 65.108.76.11 37014
Trying 65.108.76.11…
Connected to 65.108.76.11.
Escape character is ‘^]’

$ nslookup 65.108.76.11
65-108-76-11.serverhub.ru

Referencing malware samples (MD5 hash):
7e189578056cd9a7e3e24c5de9218e9d — AV detection: 24 / 68 (35.29%)

Опубликовано
В рубрике hetzner.de

Добавить комментарий

Ваш адрес email не будет опубликован.