Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 166.62.103.55 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	166.62.103.55
Hostname:	ip-166-62-103-55.ip.secureserver.net
AS number:	AS26496
AS name:	AS-26496-GO-DADDY-COM-LLC
Country:	US
First seen:	2021-07-31 11:43:22 UTC
Last online:	2021-09-08 08:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)	IP address	Port	Malware	Status	Abuse complaint sent?	Last online (UTC)
2021-07-31 11:43:22	166.62.103.55	7443	Dridex	Offline	No	2021-09-08 08:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 166.62.103.55. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-09-19 17:47:01	60d11ee61db2e22c929614695b3d9739	exe	65.71%	Dridex
2021-09-19 17:25:53	85386de717d8c8357d2220a0ac97f049	exe	61.43%	Dridex
2021-09-04 05:00:23	9adc22ad30eabbccbba54a616ccfffe9	exe	79.71%	Dridex
2021-09-03 23:21:19	a894f3bd12e8c986f4d5d2cf2dcca4fb	exe	79.71%	Dridex
2021-08-22 19:24:26	2ffa097269a8b64696512c800568df18	exe	n/a	Dridex
2021-08-13 16:22:27	e06126091b42bcbbd3e6d3123f4790d5	exe	n/a	Dridex
2021-08-09 18:12:47	480720c936288dcfd02944babc9c95cd	exe	66.67%	Dridex
2021-08-06 08:27:48	f6dd13a712096e695e5422bcc4c34a23	exe	66.67%	Dridex
2021-08-04 21:20:56	fdc3feb012dcafbae20ce304aee37b8e	exe	33.82%	Dridex
2021-08-04 21:04:56	819ea25c20a32b49a4809fe5685edbc8	exe	34.78%	Dridex
2021-08-02 19:44:23	587da3491827dbafdcb4e6b26edea35a	exe	61.43%	Dridex
2021-07-31 14:10:09	a4a32336304437449564b204c831994e	exe	51.43%	Dridex
2021-07-31 11:19:01	a3413396c1f7a8ff76b28988c5111abc	exe	50.00%	Dridex