Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 103.238.203.82 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:103.238.203.82
Hostname:n/a
AS number:AS23679
AS name:NUSANET-AS-ID Media Antar Nusa PT.
Country:- ID
First seen:2021-07-30 23:46:31 UTC
Last online:2021-09-16 22:xx:xx UTC
Malware:TrickBot

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-07-30 23:46:31103.238.203.82443
TrickBot
Online
2021-09-16 22:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 103.238.203.82. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-09-07 22:21:40de08580a6dd23e171c52cf43a1e75a43Executable exeVirustotal results 64.18%
n/a
2021-08-19 19:57:52b7aacb7960c43fdcf0f207d56e036f67Executable exeVirustotal results 43.08%
TrickBot
2021-08-18 21:01:081f6ee211acb1bfdeb75d77b0a5c80fcdExecutable exen/a
n/a
2021-08-11 09:06:332056bec115fd1245e2032f758ccc106aExecutable exeVirustotal results 51.43%
TrickBot
2021-07-30 18:08:57dbd1c7315119d40e13587ae327e4a4e4DLL dllVirustotal results 45.59%
TrickBot