Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 190.152.71.230 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:190.152.71.230
Hostname:230.71.152.190.static.anycast.cnt-grms.ec
AS number:AS28006
AS name:CORPORACION NACIONAL DE TELECOMUNICACIONES - CNT EP
Country:- EC
First seen:2021-03-08 06:32:04 UTC
Last online:2021-03-25 13:xx:xx UTC
Malware:TrickBot

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-03-08 06:32:04190.152.71.230447
TrickBot
Offline
2021-03-25 13:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 190.152.71.230. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-03-11 19:23:132c3d04c4e4ac7545bc2833e01f0ec0ccExecutable exeVirustotal results 50.00%
n/a
2021-03-11 19:07:24f4a194d6b92693a79af656040135e900Word file xlsn/a
SilentBuilder
2021-03-05 20:49:50af22f57b3d043ee129620d1d341398f9Executable exeVirustotal results 66.20%
TrickBot