RedLineStealer botnet controller @

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at on port 38784 TCP:
$ telnet 38784
Connected to
Escape character is ‘^]’

$ nslookup

Referencing malware samples (MD5 hash):
040e286308b02350784a5666497d9a01 — AV detection: 49 / 67 (73.13%)
e06d45e85ecd10438afef366af60e565 — AV detection: 39 / 67 (58.21%)

В рубрике

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *