Malware Botnet C&C
You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 190.152.125.75 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.
Database Entry
| IP address: | 190.152.125.75 |
|---|---|
| Hostname: | 75.125.152.190.static.anycast.cnt-grms.ec |
| AS number: | AS28006 |
| AS name: | CORPORACION NACIONAL DE TELECOMUNICACIONES - CNT EP |
| Country: |  EC |
| First seen: | 2021-12-09 06:25:02 UTC |
| Last online: | 2021-12-13 14:xx:xx UTC |
Botnet C&Cs
The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.
| First seen (UTC) | IP address | Port | Malware | Status | Abuse complaint sent? | Last online (UTC) |
|---|---|---|---|---|---|---|
| 2021-12-09 06:25:02 | 190.152.125.75 | 443 | Yes (2021-12-09 06:30:03 UTC) | 2021-12-13 14:xx:xx |
Referencing Malware Samples
The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 190.152.125.75. Please consider that the output is limited to the 500 most recent malware samples.
| Time stamp (UTC) | MD5 hash | File Type | Virustotal | Malware |
|---|---|---|---|---|
| 2021-12-30 04:46:30 | 2fa5396b2e99b0423c3b19740adf7713 |  exe | n/a | |
| 2021-12-30 04:08:40 | 47891a7b4724cf6760c680b87371e3e1 | exe |  43.48% | |
| 2021-12-30 04:07:56 | 12e13773472a15e86386e06cc6f847ca | exe | n/a | |
| 2021-12-29 16:30:46 | 7edd56cc5540e5fbf57a7d14c006ac04 | exe | n/a | |
| 2021-12-12 04:13:41 | 6a163c9ae5eceecd05358a2b42a43b31 |  dll | n/a | |
| 2021-12-11 03:21:48 | 63c702aaff5c96d930c9ccc2f91bd103 | dll | 50.00% | |
| 2021-12-10 03:23:23 | 263db7a133450dc6a89b9abcdae34e12 | dll | n/a | |
| 2021-12-09 05:08:04 | 0981ee5ca8245a2aa67e8b154715f007 | dll | 39.39% |