Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 144.91.92.120 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:144.91.92.120
Hostname:srv.oho.ge
AS number:AS51167
AS name:CONTABO
Country:- DE
First seen:2022-07-05 14:00:49 UTC
Last online:2022-07-27 22:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse compltain sent?Last online (UTC)
2022-07-05 14:00:49144.91.92.1208080
Emotet
Offline
Yes (2022-07-05 14:05:05 UTC)2022-07-27 22:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 144.91.92.120. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2022-07-14 00:05:363a927c45983e99c4528f510208fbd01eDLL dllVirustotal results 37.68%
Heodo
2022-07-12 12:13:0731ad4b373a6bc92a490e967b76a736a6Word file xlsxn/a
SilentBuilder
2022-07-11 09:53:23d186c9943a5f22092eb4e1e4b3d8ee15Word file xlsVirustotal results 67.80%
Heodo
2022-07-09 22:06:53ff6ee1ef620f6fd055c3f906ba29cbf4DLL dllVirustotal results 47.06%
Heodo
2022-07-09 22:05:5824478312f7779a14b1238de712e4069bDLL dllVirustotal results 38.24%
Heodo
2022-07-09 19:18:176aa42c733af71fc3dff41641df100a98DLL dllVirustotal results 39.71%
Heodo
2022-07-09 10:30:016e9f77c6845f863ebae0643acf1c5343DLL dllVirustotal results 38.24%
Heodo
2022-07-09 03:41:503434815ee1de7f98a05c367c9bbe35d5DLL dllVirustotal results 25.00%
Heodo
2022-07-09 01:05:5001f8d4a3b9899837b749e724f86a63c6DLL dlln/a
Heodo
2022-07-08 21:22:1802e97fd740fb948f96b8b8e9ee1673a6DLL dlln/a
Heodo
2022-07-08 15:11:29906adf444749bf905217663601e975ebDLL dllVirustotal results 17.65%
Heodo
2022-07-08 14:39:11b513645b39f2ed18f6749261c810561aDLL dlln/a
n/a
2022-07-08 13:49:488be237c5d1a76009904ac0a284c70f83DLL dllVirustotal results 10.45%
Heodo
2022-07-08 12:24:57898e90beaf21bb958cea6196ab27832eDLL dlln/a
Heodo
2022-07-08 11:50:45fdbfdf770d9b11baf026c5975545b8e4Word file xlsn/a
SilentBuilder
2022-07-08 11:45:34c128fb7845a9addd346c3332e79327faDLL dllVirustotal results 26.47%
Heodo
2022-07-08 11:30:17bacc66fa434181ccd8ccf8a4ea2fda91DLL dlln/a
Heodo
2022-07-07 15:46:499098d84fa58694536b3c01983581b2f8DLL dlln/a
Heodo
2022-07-07 15:40:49fff25886a9fade7df6d8a7dbac5db9b9DLL dlln/a
Heodo
2022-07-07 13:53:1184471104a0aa7fa8317b0a5b92ed959cDLL dlln/a
Heodo
2022-07-07 11:58:3090b8f376b035f19da5ae0008220d5414DLL dllVirustotal results 35.29%
Heodo
2022-07-07 10:51:00cdf8bafe702ec1523f60cefef313cc92DLL dlln/a
Heodo
2022-07-07 10:36:10e4dc5f23acf144f2b4fdf30b0c69400dDLL dlln/a
Heodo
2022-07-07 08:56:03f84afd5234e9164d60958a987750ca96Word file xlsVirustotal results 54.24%
SilentBuilder
2022-07-07 08:09:58f476a81acc067b9469f9b2562489809cWord file xlsn/a
SilentBuilder
2022-07-06 15:20:27ab8f8b11c5198922146ce459ac939b6dDLL dlln/a
Heodo
2022-07-06 13:34:1795322aacc924d4fc2f0cb39a6b4c1b25DLL dlln/a
Heodo
2022-07-06 11:58:3803dc53c4520243e32436291232ec748cDLL dlln/a
Heodo
2022-07-06 11:27:522a101dbc88425909d3fe09c48a7b14d4Word file xlsn/a
SilentBuilder
2022-07-06 10:37:28266c2fba5069bd78c089049b1bb7e31cDLL dlln/a
n/a
2022-07-06 08:11:010e7469287777e3d219288a423bdd22d0Word file xlsVirustotal results 60.34%
Heodo
2022-07-06 08:10:513035cbb811f7a4f35dbb14a1d91f0336Word file xlsVirustotal results 54.39%
SilentBuilder
2022-07-06 08:10:43aa09579fddd71e7fe1701eb3d576ffd7Word file xlsVirustotal results 65.52%
Heodo
2022-07-05 18:22:15fb8eb412860bcbc1bdf759bfe46ad253DLL dlln/a
Heodo
2022-07-05 17:26:46e179115e21ebe76ad95d6ef834e3f863DLL dlln/a
Heodo
2022-07-05 13:54:19c3d71f860c941fb9a4a16f5b1ebf0c34Word file xlsVirustotal results 46.55%
SilentBuilder