Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 148.251.190.18 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	148.251.190.18
Hostname:	db01.trackervigil.com
AS number:	AS24940
AS name:	HETZNER-AS
Country:	DE
First seen:	2021-09-22 14:30:22 UTC
Last online:	2021-09-27 10:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)	IP address	Port	Malware	Status	Abuse complaint sent?	Last online (UTC)
2021-09-22 14:30:22	148.251.190.18	443	Dridex	Offline	No	2021-09-27 10:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 148.251.190.18. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-09-22 18:24:28	2af35d9c2f077a4eba92e8dbe771f40c	dll	21.21%	Dridex
2021-09-22 18:24:18	142b680a0540f3664068c3157c999faa	dll	22.73%	Dridex
2021-09-22 18:20:11	5a66fe2fcfd1de0b4d27f65c23f9b59e	dll	20.31%	Dridex
2021-09-22 18:20:05	0a0db2bba0688506e8f1197fb8a86820	dll	21.21%	Dridex
2021-09-22 18:19:59	5319bcacb40db3b1186aed3a6504bd3a	dll	21.54%	Dridex
2021-09-22 18:15:35	acdb2b053a59d94cfb40bfa50a834108	dll	19.70%	Dridex
2021-09-22 18:15:28	b0214678b659976855095fd795510a19	dll	19.40%	Dridex
2021-09-22 18:08:18	2a891556a1a126eecdca310bd88fe0c0	dll	21.21%	Dridex
2021-09-22 18:06:22	d691fac192a32e8685208be4292ca391	dll	20.90%	Dridex
2021-09-22 15:27:48	8d8bc7ee53b051e94f55217009edf458	dll	21.21%	Dridex
2021-09-22 14:29:51	80facba257fc754e9942ec11c3469ef9	dll	20.00%	Dridex
2021-09-22 14:29:11	05dfde077206d140af87a91fe51cfc95	xlsx	16.13%	Dridex
2021-09-22 14:13:47	2b75f697eca01f9e7e8395b5b941e0ea	dll	19.70%	Dridex
2021-09-22 14:12:55	19989ff08d6e0accb9d233f5477bb216	xlsx	16.39%	Dridex