Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 167.172.119.42 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	167.172.119.42
Hostname:	n/a
AS number:	AS14061
AS name:	DIGITALOCEAN-ASN
Country:	US
First seen:	2021-07-02 19:15:50 UTC
Last online:	2022-02-21 10:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)	IP address	Port	Malware	Status	Abuse complaint sent?	Last online (UTC)
2021-07-02 19:15:50	167.172.119.42	443	Dridex	Offline	Yes (2021-11-25 15:33:15 UTC)	2022-02-21 10:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 167.172.119.42. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-07-02 19:23:53	1d8909bf4bad3999a514a46ef7f6edbb	dll	23.88%	Dridex
2021-07-02 19:23:48	a42a70615e6802d47ccf18858932bed8	dll	25.37%	Dridex
2021-07-02 19:14:37	1453a075f89ca0c83fbc4be1aa50e130	dll	27.27%	Dridex
2021-07-02 18:51:59	ac34aeef6269a81bbf30358a50b4d8ea	dll	24.24%	Dridex
2021-07-02 13:51:51	1d56c9212f46064cc5da6f2032cfd38d	xlsb	n/a	n/a
2021-07-02 13:51:31	af0b209e6984467d3115ce6dc6b8ecab	xlsb	n/a	n/a
2021-07-02 13:51:19	aecb05d8652659bec372c0bffbf1a9af	xlsb	n/a	n/a
2021-07-02 13:43:17	5ef9f9ecd54be4033788585a59aec61b	xlsb	n/a	n/a
2021-07-02 13:42:16	ad68cce66dd90c487c5667344583393d	xlsb	4.69%	n/a
2021-07-02 13:40:47	3c035c2361b9550711be19604af03fa7	xlsb	n/a	n/a
2021-07-02 13:15:46	c0cfbb6c549551dc7878da7701d4fb07	xlsb	n/a	n/a
2021-07-02 13:15:30	32c78c9fa7c6b4208cc820e73fbfea26	xlsb	n/a	n/a
2021-07-02 13:15:21	a4ab1536a4027c43932a5197e3eb3602	xlsb	n/a	n/a
2021-07-02 13:15:21	bccb681669c8a330021dd288f0184672	xlsb	n/a	n/a