Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 103.109.247.9 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:103.109.247.9
Hostname:n/a
AS number:AS136883
AS name:IDNIC-UNUSA-AS-ID Universitas Nahdlatul Ulama Surabaya
Country:- ID
First seen:2021-08-16 15:18:09 UTC
Last online:2022-04-07 09:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse complaint sent?Last online (UTC)
2021-08-16 15:18:09103.109.247.910443
Dridex
Offline
Yes (2021-11-25 15:37:50 UTC)2022-04-07 09:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 103.109.247.9. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-08-23 06:51:24f0242add3e62b4bda6a1f3e38e98a73dDLL dllVirustotal results 58.21%
Dridex
2021-08-17 12:13:42485a2dc5d5555c4af8f697729696c12dWord file xlsmn/a
Dridex
2021-08-17 02:04:31dad06884d3073cddd3cc2e8f26d51e46Word file xlsmVirustotal results 12.90%
Dridex
2021-08-17 01:51:25f6241843013cf4d4ff9a6e110bcb64f6Word file xlsmVirustotal results 12.70%
Dridex
2021-08-17 01:35:58489648e916a24beee247a9cf73cd8573Word file xlsmVirustotal results 14.29%
Dridex
2021-08-17 01:31:29f2741d93212ada7bc29309d42cb5ed58Word file xlsmVirustotal results 12.90%
Dridex
2021-08-17 01:24:29e5cdc150a6144001cb690f8ed61650a9Word file xlsmn/a
Dridex
2021-08-17 01:06:42686934b578a0670a3cfe05a66db3dd69Word file xlsmn/a
Dridex
2021-08-17 01:03:10636609af03ac6ea04bc0583fe3f3290cWord file xlsmVirustotal results 11.29%
Dridex
2021-08-17 00:59:393c720e2a319a2e4a854d469147d9de5dWord file xlsmVirustotal results 13.11%
Dridex
2021-08-17 00:10:166e91a59509fa5b21802bb4f9bd27b8e9Word file xlsmVirustotal results 11.11%
Dridex
2021-08-17 00:06:445468eb349612f65779422e8afac8b0aeWord file xlsmVirustotal results 13.56%
Dridex
2021-08-17 00:03:113987f1cf14310ca1c8c1d8e7c8c452bbWord file xlsmVirustotal results 11.48%
Dridex
2021-08-16 23:52:3813d41295c82eee41a4fe4501cf309bb1Word file xlsmVirustotal results 13.79%
Dridex
2021-08-16 23:38:37a4774e8bc50b664824d02e561dd432e2Word file xlsmVirustotal results 14.75%
Dridex
2021-08-16 22:49:09fd7075efa74442ec550ba1b0613f0db3Word file xlsmVirustotal results 14.29%
Dridex
2021-08-16 21:59:58576fac94cc5f39cebf281fb795c928a5Word file xlsmVirustotal results 12.70%
Dridex
2021-08-16 21:56:27a2110b339ee7511bc42a389721a452d3Word file xlsmVirustotal results 13.11%
Dridex
2021-08-16 21:21:3615011495873d6ffbc1b1aa1e9bc144ecDLL dllVirustotal results 25.00%
Dridex
2021-08-16 21:17:540cc99a641ba40204b63b63cd03efc5dfDLL dllVirustotal results 25.00%
Dridex
2021-08-16 21:17:49974129324d94982067fcdfa802f2c906DLL dllVirustotal results 27.94%
Dridex
2021-08-16 20:46:25c576254df1035c7729cf259c72dcf023Word file xlsmVirustotal results 14.29%
Dridex
2021-08-16 20:25:21f96d281618e4a12d3304eda316fcd78fWord file xlsmn/a
Dridex
2021-08-16 20:14:4816c5e09b2a017c455b4c681f8d9b7352Word file xlsmn/a
Dridex
2021-08-16 20:11:14495536ee44dea1ec9519e8fe3fcdfbb7Word file xlsmVirustotal results 18.03%
Dridex
2021-08-16 20:04:093333b5028893e1fc6fb205abbe3a4cf2Word file xlsmVirustotal results 15.00%
Dridex
2021-08-16 19:57:02f40677fe80c70a0da3c82551f4d50975Word file xlsmn/a
Dridex
2021-08-16 19:25:1595662fdaa94bb3dba17ab7b08131d155Word file xlsmVirustotal results 14.29%
Dridex
2021-08-16 19:21:452ab7590fe165c9167d84ef2cdc0e02a2Word file xlsmn/a
Dridex
2021-08-16 18:38:54a72fc2c6d0a42b070a2974a2ac126b90Word file xlsmVirustotal results 14.75%
Dridex
2021-08-16 18:35:24533b4630cf5f95be1aae17d23f93eeccWord file xlsmn/a
Dridex
2021-08-16 17:42:035e9bd704a17284168c27181b31b97f2dWord file xlsmVirustotal results 20.00%
Dridex
2021-08-16 17:38:348005bf9346cc1cccf6bff65649d4d8f8Word file xlsmVirustotal results 19.67%
Dridex
2021-08-16 17:24:29cfee648208634c4fe5201d3574bc7e5aWord file xlsmVirustotal results 12.70%
Dridex
2021-08-16 17:20:01be7b5590ad4199e9a3bae6cac2475bddDLL dllVirustotal results 26.47%
Dridex
2021-08-16 17:18:470b1145386e54c133263fc6e8a9a71ed5Word file xlsmn/a
Dridex
2021-08-16 17:17:36ac01655c93b0e07eadfa2c8dc5d436bbWord file xlsmVirustotal results 16.39%
Dridex
2021-08-16 17:14:0513f5790f616d9a889db8726fe74cbfc7Word file xlsmn/a
Dridex
2021-08-16 17:10:35dfc836fb4e38375eb01187a5045b1600Word file xlsmVirustotal results 11.29%
Dridex
2021-08-16 17:07:078f64cf4979db7e080e42843f125954a3Word file xlsmVirustotal results 12.70%
Dridex
2021-08-16 17:03:36727ddadcfb432b1c5336338ffb56b451Word file xlsmVirustotal results 12.70%
Dridex
2021-08-16 17:00:05584d824f52037d79678ecbbc1912378eWord file xlsmn/a
Dridex
2021-08-16 16:59:40db501f895f9484778acee8cf9082bc4cDLL dllVirustotal results 25.37%
Dridex
2021-08-16 16:58:418183a32219a628da49bd3109b86c5650Word file xlsmVirustotal results 12.90%
Dridex
2021-08-16 16:56:348cd5ef75e45fff0c7c7dedd4269fd1fbWord file xlsmVirustotal results 11.11%
Dridex
2021-08-16 16:53:0214f2664efd80eac5191054e3130a1bb5Word file xlsmVirustotal results 14.52%
Dridex
2021-08-16 16:49:31d32fcbe77518b3c277c992a6738c6148Word file xlsmVirustotal results 11.11%
Dridex
2021-08-16 16:46:0209e58cee9a2db66d94b83c2f42d53fd5Word file xlsmVirustotal results 19.67%
Dridex
2021-08-16 16:35:3350d8c7f7b796247dd9adbf7e06593250Word file xlsmVirustotal results 11.11%
Dridex
2021-08-16 16:28:34f0741524a977fd80aa2afa476f7d97a5Word file xlsmVirustotal results 18.03%
Dridex
2021-08-16 15:41:408b7e0f756bea5128e7e714ed8ac81d0bDLL dllVirustotal results 23.53%
Dridex
2021-08-16 15:30:30099650cd133fdeacda04a6d25298cb9aDLL dllVirustotal results 27.94%
Dridex
2021-08-16 15:28:20271b9aa2476aca33609c50c52ae89af2Word file xlsmVirustotal results 11.11%
Dridex
2021-08-16 15:27:55b7822ebc4c140c0b96663b63680945a4Word file xlsmn/a
Dridex
2021-08-16 14:53:28b0f65a63dd08f3977dc1bedaf30aaec5DLL dllVirustotal results 23.53%
Dridex