Malware Botnet C&C
You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 138.201.222.158 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.
Database Entry
| IP address: | 138.201.222.158 |
|---|---|
| Hostname: | mediafarma.it |
| AS number: | AS24940 |
| AS name: | HETZNER-AS |
| Country: |  DE |
| First seen: | 2021-08-23 15:01:34 UTC |
| Last online: | 2021-08-24 22:xx:xx UTC |
Botnet C&Cs
The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.
| First seen (UTC) | IP address | Port | Malware | Status | Abuse complaint sent? | Last online (UTC) |
|---|---|---|---|---|---|---|
| 2021-08-23 15:01:34 | 138.201.222.158 | 4664 | No | 2021-08-24 22:xx:xx |
Referencing Malware Samples
The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 138.201.222.158. Please consider that the output is limited to the 500 most recent malware samples.
| Time stamp (UTC) | MD5 hash | File Type | Virustotal | Malware |
|---|---|---|---|---|
| 2021-08-25 05:23:53 | 85b3804f8d20900dcbc7fcfaed191898 |  xlsx |  15.00% | |
| 2021-08-24 11:03:52 | d2c657b1d893eca12b46e79b0ae908cb | xlsx | 13.33% | |
| 2021-08-23 18:09:03 | 27635b8e585b6ac169cc402632592a5e |  dll | 27.94% | |
| 2021-08-23 18:08:30 | eec7956961ccf9bb2f3d2c030ab9a0a1 | dll | n/a | |
| 2021-08-23 15:51:11 | 87d5d2e9bb63d1a530db36b5eac314a9 | dll | 32.84% | |
| 2021-08-23 15:24:05 | 871071a9adfa42c59820c30882fd5240 | dll | 27.27% | |
| 2021-08-23 15:21:24 | fcc4e3f10d677af49364574c390ce41b | xlsx | 11.67% | |
| 2021-08-23 15:12:54 | 49d1978dc16a3c33f6574f4f5601faeb | dll | 21.21% | |
| 2021-08-23 14:39:25 | 794af9acbf0cc5a7e5051425e539d5b0 | dll | 25.76% | |
| 2021-08-23 14:38:44 | 11f8f9028c6f5be72efde75cd177515e | xlsx | n/a |