Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 159.89.91.92 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	159.89.91.92
Hostname:	server.1onica.com
AS number:	AS14061
AS name:	DIGITALOCEAN-ASN
Country:	US
First seen:	2021-01-25 15:26:46 UTC
Last online:	2021-01-30 03:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 159.89.91.92. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-01-26 11:50:31	493afa8e6757dac3ca1c9e8cd0bc0ab7	dll	n/a	Dridex
2021-01-26 11:37:22	26a9b51bc3553cf98b7da27cc99c31c9	dll	n/a	Dridex
2021-01-26 11:36:19	9d41e73e80b3e6633600d32940385577	dll	n/a	Dridex
2021-01-26 11:34:44	59d4c719403b793876d65395f5a2d0bd	dll	n/a	Dridex
2021-01-26 11:34:27	f3debc322cdac5938c03a25c7c89516f	dll	n/a	Dridex
2021-01-26 05:58:31	49bff5e0b2ee4f3f9639d95939c27838	dll	10.29%	Dridex
2021-01-26 05:57:46	9cc5704418f347311ee9b2e0963905c3	dll	n/a	Dridex
2021-01-26 05:55:29	9d9c1d19818e75ccf8c9de90709f26ce	dll	n/a	Dridex
2021-01-26 05:55:28	5ebf8f1f661cab22f8dc289961fb16eb	dll	n/a	Dridex
2021-01-26 05:54:58	b0cb207a57f313c639f322c1986e096e	dll	n/a	Dridex
2021-01-26 05:54:49	dcf6a2115c56bc31e15251419218cb7c	dll	n/a	Dridex
2021-01-25 17:39:53	7f818f72f0b4b2e05ee4f37eb12d2825	dll	n/a	Dridex
2021-01-25 17:39:39	231f96aed0f863afcff14148e712a2cd	dll	n/a	Dridex
2021-01-25 17:38:21	5be4587dc366ca4bf3b24507c9b45614	dll	n/a	Dridex
2021-01-25 17:38:21	b2d4aa5200d3cf95c7189b14f1ceecc5	dll	n/a	Dridex
2021-01-25 17:38:21	00e37edf3c2e277258879f1879018b5f	dll	n/a	Dridex
2021-01-25 17:37:17	725f7d72e9342f3da49e0c40f72c99b5	dll	n/a	Dridex
2021-01-25 17:37:17	e8d61be43b58dc1d87482bb746dda70b	dll	n/a	Dridex
2021-01-25 17:37:17	095f7754ca6c22834990a2c0f2980d30	dll	n/a	Dridex
2021-01-25 16:41:27	b2fc6b6e0ae52629ca0e54fa4f183601	dll	n/a	Dridex
2021-01-25 16:32:40	81423daf16d41da625071d9c5741b3ee	dll	n/a	Dridex
2021-01-25 16:32:23	284f325559f6aab11049138a6f1e2de7	dll	n/a	Dridex
2021-01-25 16:32:23	ae8cf9e6fcf0b61224ed8c5ac4b12b8f	dll	n/a	Dridex
2021-01-25 16:32:08	37caa465917f63531b9557531a698d2f	dll	n/a	Dridex
2021-01-25 16:31:20	441cc21491bf082325f6ae6fac8412ce	dll	n/a	Dridex
2021-01-25 16:29:57	1bd97bbb2b7b26c4394d2c901c00904f	dll	n/a	Dridex
2021-01-25 16:29:55	9fd1830fba8ae3d09523c4700102efab	dll	n/a	Dridex
2021-01-25 16:28:37	3ecd84bc5055025e0d5b63a98593909c	dll	n/a	Dridex
2021-01-25 16:27:39	bde322c970c261758ef5378a8747625a	dll	n/a	Dridex
2021-01-25 16:14:07	43d20df167a4ad9db1b81e8547c6871b	dll	7.25%	Dridex
2021-01-25 16:14:07	3224e1fa065708d18b67b0fe974f1d72	dll	5.80%	Dridex
2021-01-25 16:09:14	b256bce5b391bf8dfe38166827261448	dll	n/a	Dridex
2021-01-25 16:08:56	5218f5ead7ede051f1cef6aa90f61916	dll	n/a	Dridex
2021-01-25 16:01:35	d43bace20abb773d02bb0a1eabc6ff3e	dll	n/a	Dridex
2021-01-25 15:43:24	e8137a341c10ce2be26a8b58e806e4a5	dll	n/a	Dridex
2021-01-25 15:43:24	16dc851e2a0acc9e292d23f82b55e49c	dll	n/a	Dridex
2021-01-25 15:43:24	703b9e10b55ca912d42d09462024becc	dll	n/a	Dridex
2021-01-25 15:40:31	12a2cb0787e6b6997ee9a905c8fd45a0	dll	n/a	Dridex
2021-01-25 15:23:31	b7db263c652f1f02032b601ed1b5b60b	dll	n/a	Dridex
2021-01-25 15:23:31	80f4ab263de978310ad4963dceb4919b	dll	n/a	Dridex
2021-01-25 15:23:31	7aec6132fa2eb3c5b492fdedec149b39	dll	n/a	Dridex
2021-01-25 15:23:30	df5931e9cee5e21034e595890dce2fd2	dll	n/a	Dridex
2021-01-25 15:23:30	e4e8ec9da5a4fba8d103b3fda17766b2	dll	n/a	Dridex
2021-01-25 15:23:30	e81ea4ba1cf5c6db3c950c8284ad0cb5	dll	n/a	Dridex
2021-01-25 15:23:30	4c36145407eca25899a3bf882f67b95a	dll	n/a	Dridex