Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 157.7.139.198 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:157.7.139.198
Hostname:v157-7-139-198.myvps.jp
AS number:AS7506
AS name:INTERQ GMO Internet,Inc
Country:- JP
First seen:2021-03-10 13:58:48 UTC
Last online:2021-03-25 03:xx:xx UTC
Malware:Dridex

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-03-10 13:58:48157.7.139.1986601
Dridex
Offline
2021-03-25 03:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 157.7.139.198. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-04-07 17:58:04ea0be498781bf565bbc2279222309c0dDLL dllVirustotal results 55.07%
Dridex
2021-03-11 06:12:19c033932c15f002e82005af6207370743DLL dlln/a
Dridex
2021-03-10 17:58:46f207f3c714bbe0ab7c05ac35c4b7e928DLL dlln/a
Dridex
2021-03-10 16:37:165c73fe5ea3a90226bd899201f1a5e9e7DLL dlln/a
Dridex
2021-03-10 16:36:3258d1d1119844c16122189ede908b825cDLL dlln/a
Dridex
2021-03-10 13:43:096c1bab52ed068b7347832b7385d19483DLL dlln/a
Dridex
2021-03-10 13:43:08c1903a66f531dbad4d13801a111842ddDLL dlln/a
Dridex
2021-03-10 13:42:34858715bc927bc3f4f0711720e4fa2899DLL dlln/a
Dridex
2021-03-10 13:42:208b725fd1178b7cebca025c81a0d25aa2DLL dlln/a
Dridex