Browse Botnet C&Cs

You are currently viewing the database entry for the TL botnet command&control server (C&C) 131.161.105.206. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:131.161.105.206
Hostname:131-161-105-206.rev.netcorporativa.com.br
Status:- Online
Spamhaus SBL:SBL457945
Malware:TrickBot
AS number:AS263432
AS name:CORPORATIVA TELECOMUNICACOES EIRELI ME
Country:- BR
First seen:2019-07-21 06:42:06 UTC
Last seen:2019-08-22 23:33:46 UTC
Last online:2019-09-19

Malware Samples


The table below documents all malware samples associated with this TL botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-08-25 02:19:226056cc081a4ac70985b64d77702712c5Virustotal results 47/70 (67.14%) 131.161.105.2068082TrickBot
2019-08-23 22:49:2229d55db5084c1c8b5e1e55d62efdb6e7Virustotal results 46/71 (64.79%) 131.161.105.2068082TrickBot
2019-07-22 17:57:10bb88efe92594822c382e8cdac6d6bf46Virustotal results 42/71 (59.15%) 131.161.105.2068082TrickBot
2019-07-21 23:20:50aae03d4ee718b88f9de89e0e073a7c5bVirustotal results 50/70 (71.43%) 131.161.105.2068082TrickBot

# of malware samples: 4