Vjw0rm botnet controller @64.225.56.31

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 64.225.56.31 on port 7891 TCP:
$ telnet 64.225.56.31 7891
Trying 64.225.56.31…
Connected to 64.225.56.31.
Escape character is ‘^]’

Other malicious domain names hosted on this IP address:
nyannewtoday.duckdns.org 64.225.56.31
wormwma789.duckdns.org 64.225.56.31

Referencing malware samples:
MD5 214df14372b4d256aa79f43842e73540
MD5 6f402630ee05ef7559ae254e09961184
MD5 f93de6c1bdae5c0db902da39891f7306

Добавить комментарий

Ваш адрес email не будет опубликован.