RedLineStealer botnet controller @92.222.145.232

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 92.222.145.232 on port 61157 TCP:
$ telnet 92.222.145.232 61157
Trying 92.222.145.232…
Connected to 92.222.145.232.
Escape character is ‘^]’

$ nslookup 92.222.145.232
ip232.ip-92-222-145.eu

Referencing malware samples:
MD5 488b6bbdcef6e9f47d844f4e45d065b1
MD5 8c67759c8c18fd520cd116d3a2a71cb4

Опубликовано
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован.