The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Socelars botnet controller located at 178.238.230.180 on port 80 (using HTTP POST):
hXXp://www.mixerrific.com/Home/Index/cgfdc
$ dig +short www.mixerrific.com
178.238.230.180
$ nslookup 178.238.230.180
vmi476613.contaboserver.net
Referencing malware binaries (MD5 hash):
011f2b76b3dcb347377f73b2c94b80ab — AV detection: 43 / 70 (61.43)
5cb3e3a302ca2cca86e440c1bb845d07 — AV detection: 47 / 68 (69.12)
a075f02d6a2f8691767b1ce863030bb8 — AV detection: 44 / 69 (63.77)
abb273900ed9df6588ee8fcbc1921fe5 — AV detection: 35 / 68 (51.47)
b0ca1c9cc15dfa9991aaa4e300829b94 — AV detection: 38 / 67 (56.72)
b13093ad6f8c11f64240c3178d92c3f4 — AV detection: 33 / 59 (55.93)
b173b00d319f517fb07bac35841f1fc3 — AV detection: 40 / 67 (59.70)
b8ca6060a187461bd3313cea23645c75 — AV detection: 47 / 70 (67.14)
b9febf74e3cb268173a25bd66d9b32a5 — AV detection: 39 / 68 (57.35)
bf8ef0854436adce082d0654ded7b6d9 — AV detection: 44 / 70 (62.86)
bf9986d07885cd15bde0ac2a12024466 — AV detection: 38 / 70 (54.29)
c14c024e7634435aa8be270592509b09 — AV detection: 40 / 69 (57.97)
c9719b44c44c13714d83d913232bc433 — AV detection: 47 / 67 (70.15)
cb27cf828be9fa89fa58267d15641746 — AV detection: 38 / 68 (55.88)
f9bdaa57b4b122efc33fd446bb6eade5 — AV detection: 45 / 71 (63.38)
Other malicious domain names hosted on this IP address:
www.cakederam.com 178.238.230.180
www.uppinfo.com 178.238.230.180
www.cnwautomotive.com 178.238.230.180
www.internsoverseas.com 178.238.230.180
www.mixerrific.com 178.238.230.180