Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 185.172.129.109. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:185.172.129.109
Hostname:pach.kas
Status:Offline
Spamhaus SBL:SBL453536
Malware:TrickBot
AS number:AS204154
AS name:FIRSTBYTE-US-AS
Country:- US
First seen:2019-07-09 03:14:44 UTC
Last seen:2019-07-09 05:58:39 UTC
Last online:2019-07-09

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-07-09 06:50:46066bdd7a4f48c8818555536a3f61c0d8Virustotal results 47/70 (67.14%) 185.172.129.109446TrickBot
2019-07-09 06:33:28aeb10cd1cd6f61b4b7fd093533d17e91Virustotal results 52/71 (73.24%) 185.172.129.109446TrickBot
2019-07-09 06:25:131afbe8beed8cf66ba52796eb1360d12dVirustotal results 32/69 (46.38%) 185.172.129.109446TrickBot
2019-07-09 05:18:05fec4ab8b3de72469834286b5a1eda987Virustotal results 50/70 (71.43%) 185.172.129.109446TrickBot
2019-07-09 04:21:14d27e4a1371f7ffd56388133f318c28d9Virustotal results 44/70 (62.86%) 185.172.129.109446TrickBot

# of malware samples: 5