Browse Botnet C&Cs

You are currently viewing the database entry for the TL botnet command&control server (C&C) 162.216.0.189. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:162.216.0.189
Hostname:189.0.216.162.static.reverse.as19531.net
Status:Offline
Spamhaus SBL:SBL390270
Malware:TrickBot
AS number:AS19531
AS name:NODESDIRECT
Country:- US
First seen:2020-08-04 12:59:52 UTC
Last seen:2020-08-05 22:22:22 UTC
Last online:2020-08-15

Malware Samples


The table below documents all malware samples associated with this TL botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-08-05 22:42:1713390f367a2752ce98f07bbd91ea49afn/a162.216.0.189443TrickBot
2020-08-05 22:40:2932559be608555c089bf1816b5c0a0ed2Virustotal results 28 / 71 (39.44%) 162.216.0.189443TrickBot
2020-08-05 22:32:40178b891990bb74b8c5849b07b1705610n/a162.216.0.189443TrickBot
2020-08-05 22:12:550b66f5c2945be5cf3deb177a862fc17dVirustotal results 26 / 70 (37.14%) 162.216.0.189443TrickBot
2020-08-04 23:08:48a51c987136db8050f2b60e3832552e90Virustotal results 11 / 71 (15.49%) 162.216.0.189443TrickBot
2020-08-04 23:08:48a51c987136db8050f2b60e3832552e90Virustotal results 11 / 71 (15.49%) 162.216.0.189443TrickBot
2020-08-04 22:57:241b33b253603d006a42b04a7e0a55167dVirustotal results 26 / 73 (35.62%) 162.216.0.189443TrickBot
2020-08-04 15:41:481b0eee011bfc0abc6af4a4974c97c98en/a162.216.0.189443TrickBot
2020-08-04 15:15:144c5df6743a75d211c7a4dd9230b3181an/a162.216.0.189443TrickBot
2020-08-04 14:45:439aa12b41c1dd8e2f373fbf474fe35e4bn/a162.216.0.189443TrickBot
2020-08-04 13:43:14d5618e4d5abf75bb8da714e0dfa28b58n/a162.216.0.189443TrickBot
2020-08-04 13:15:04f520736d0d408b4cd79ac0a489286bbdn/a162.216.0.189443TrickBot

# of malware samples: 12