RemcosRAT botnet controller @

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at on port 2404 TCP:
$ telnet 2404
Connected to
Escape character is ‘^]’

Other malicious domain names hosted on this IP address:

Referencing malware samples:
MD5 1c2a50320b0b3ea581a7fb7e14108d8d
MD5 437f82e57e442f34c7b8c15af51e1fd2
MD5 65bae03baa102ea034e1fbe375b7f168
MD5 cdd7cb8a14f53d014281dcce5d90f281
MD5 cfb817a8047edd31624d674686f0c7aa

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *