Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 103.253.145.28 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:103.253.145.28
Hostname:sgp1.sor.my
AS number:AS14061
AS name:DIGITALOCEAN-ASN
Country:- SG
First seen:2021-05-20 20:36:17 UTC
Last online:2021-06-20 01:xx:xx UTC
Malware:Dridex

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-05-20 20:36:17103.253.145.284125
Dridex
Online
2021-06-20 01:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 103.253.145.28. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-06-19 17:58:29367229f83d0fb34bd8beadf78c6a04e9Executable exeVirustotal results 68.57%
Dridex
2021-06-19 01:31:27323b38c0d3064590356fec95cdf21c09Executable exeVirustotal results 67.14%
Dridex
2021-06-18 20:22:006f3bffa920380db8aa2fb9c694491439Executable exeVirustotal results 68.57%
Dridex
2021-06-15 00:30:1963974e159b3a86dbd410008ba6960044Executable exeVirustotal results 68.57%
Dridex
2021-06-14 22:34:01b7be358399d436a2ce02ca7b35eeb5c9Executable exeVirustotal results 56.52%
Dridex
2021-06-14 21:29:4712f198f715f1672071bff3a9f407439dExecutable exeVirustotal results 65.71%
Dridex
2021-06-14 20:30:32057729309f5a39308b492b5766262996Executable exeVirustotal results 63.24%
Dridex
2021-06-13 11:32:4287c16cf2139a4757dc12f47525a43d63Executable exen/a
Dridex
2021-05-31 17:09:223266c826ed6f72c50765f46184f38027Executable exeVirustotal results 64.29%
Dridex
2021-05-29 17:12:10abf10b92c5054c24a0849b864f3adcf3Executable exeVirustotal results 64.29%
Dridex
2021-05-26 02:07:40a53091969954c7b082fc13689995546aExecutable exeVirustotal results 69.57%
Dridex
2021-05-23 19:49:32a88781edb3503ed9dacc706a8ff9bb24Executable exeVirustotal results 69.12%
Dridex
2021-05-23 18:30:13a0db7e1d3f69f6bb2ef4f755619b298eExecutable exeVirustotal results 69.12%
Dridex
2021-05-23 05:41:45a5eb2c64f11e0917ead3133dde506d67Executable exeVirustotal results 56.52%
Dridex
2021-05-23 02:36:47a047f7203ae4ae5778de7ae53cd36411Executable exeVirustotal results 50.00%
Dridex
2021-05-22 12:06:11ac8d68ef4acef4bf090e02008fb0c975Executable exeVirustotal results 62.86%
Dridex
2021-05-21 10:49:16a090abd8d07cbb54b54f58dce71eedf5Executable exeVirustotal results 66.67%
Dridex
2021-05-20 19:50:57cc86b436834353764e40646605a88d65Executable exen/a
Dridex
2021-05-20 19:46:555c594ef405879ed8a6a85c6e1e50214aExecutable exen/a
Dridex
2021-05-20 19:45:25a8cc1e5af0ea85a28fe292cc8fb654d1Executable exen/a
Dridex
2021-05-20 19:45:057043dafa1ead87aa34d76d70cce2e17aExecutable exen/a
Dridex
2021-05-20 19:28:114d59b8316f57dfbfef0673afdfb28716Executable exen/a
Dridex