Malware Botnet C&C
You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 154.79.252.132 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.
Database Entry
| IP address: | 154.79.252.132 |
|---|---|
| Hostname: | 132-252-79-154.r.airtelkenya.com |
| AS number: | AS36926 |
| AS name: | CKL1-ASN |
| Country: |  KE |
| First seen: | 2021-02-22 23:30:54 UTC |
| Last online: | 2021-02-26 03:xx:xx UTC |
| Malware: | TrickBot |
Botnet C&Cs
The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.
| First seen (UTC) | IP address | Port | Malware | Status | Last online (UTC) |
|---|---|---|---|---|---|
| 2021-02-22 23:30:54 | 154.79.252.132 | 449 | 2021-02-26 03:xx:xx |
Referencing Malware Samples
The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 154.79.252.132. Please consider that the output is limited to the 500 most recent malware samples.
| Time stamp (UTC) | MD5 hash | File Type | Virustotal | Malware |
|---|---|---|---|---|
| 2021-02-26 00:10:42 | a1df4629502f1bf758fc9c5f16cfc51b |  exe |  64.62% | |
| 2021-02-23 20:06:15 | 884dab96c679194fc5140322d5ce9e9d |  dll | 20.29% | |
| 2021-02-22 20:57:17 | 864a00cc7f1d5104f9986addbcc4deaa | exe | n/a |