Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 188.234.115.35 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:188.234.115.35
Hostname:188x234x115x35.static-business.omsk.ertelecom.ru
AS number:AS41843
AS name:ERTH-OMSK-AS
Country:- RU
First seen:2021-12-09 09:45:31 UTC
Last online:2022-03-01 23:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse compltain sent?Last online (UTC)
2021-12-09 09:45:31188.234.115.35443
TrickBot
Offline
Yes (2021-12-09 09:50:03 UTC)2022-03-01 23:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 188.234.115.35. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-12-30 04:09:021385f806946c93208b7cc488f84133feExecutable exeVirustotal results 44.78%
TrickBot
2021-12-29 21:50:07f303a5db91e2d48c3ed017c041ad7fe2Executable exeVirustotal results 46.38%
TrickBot
2021-12-29 13:41:16cefe2d36095eb6a75e302cf93f74f840Executable exen/a
TrickBot
2021-12-16 07:07:167cb80f97f1c315aa39c182d88ab227dcExecutable exeVirustotal results 31.82%
TrickBot
2021-12-13 13:29:4199f96f5410625008993964f183e90a68DLL dlln/a
TrickBot
2021-12-13 06:55:309b42c64e04d451fda2ea9cf545d26d64DLL dlln/a
TrickBot
2021-12-12 06:01:110b79c05d5df4e20bebe6009c2fa29676DLL dlln/a
TrickBot
2021-12-11 03:23:065082c6a494e17befca8cf5bbc1db6274DLL dllVirustotal results 50.00%
n/a
2021-12-10 02:08:105d1a1e4afb362e840f951ce7c611b686DLL dlln/a
TrickBot
2021-12-09 09:20:24499cbd99276996fd8d436324173ff460DLL dlln/a
TrickBot