Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 144.48.138.213 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:144.48.138.213
Hostname:n/a
AS number:AS55769
AS name:SEATELECOM-KH SOUTH EAST ASIA TELECOM (Cambodia) Co., LTD
Country:- KH
First seen:2021-05-24 14:24:20 UTC
Last online:2021-06-14 01:xx:xx UTC
Malware:TrickBot

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-05-24 14:24:20144.48.138.213443
TrickBot
Offline
2021-06-14 01:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 144.48.138.213. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-07-04 20:33:05562255c763893489cbf2836620322d05Executable exeVirustotal results 65.71%
TrickBot
2021-06-29 18:05:55d5027ed0ea80dc469af07a5b36ba0651Executable exeVirustotal results 69.57%
TrickBot
2021-06-23 09:30:2156589fb30f01fe50174660b5ce2c85bdExecutable exen/a
n/a
2021-06-23 07:13:55ca77b058996f61374882501e47bb5523Executable exen/a
n/a
2021-06-23 04:56:42789f26a06728d5bf4fc611c0b089e8bbExecutable exen/a
n/a
2021-06-23 02:47:25d2e67d3d912d3bbc22eccd1884cc20e2Executable exen/a
n/a
2021-06-23 02:10:443cc0a16123dd225fed4dbef1f88a5e71Executable exen/a
n/a
2021-06-23 01:43:501af2ac85228651957d83757a8f319b7dExecutable exen/a
n/a
2021-06-22 23:24:371bc60859c0e8ce3076030b60230e61abExecutable exen/a
TrickBot
2021-06-20 18:20:45fcd093f926357997aa088d7b2c45bfdeExecutable exen/a
TrickBot
2021-06-02 17:42:46e4d1a750035fe0b45be043fed1a711d4Executable exen/a
n/a