Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 191.112.21.157 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:191.112.21.157
Hostname:191-112-21-157.baf.movistar.cl
AS number:AS7418
AS name:TELEFONICA CHILE S.A.
Country:- CL
First seen:2022-06-13 16:38:17 UTC
Last online:2022-06-13 17:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse compltain sent?Last online (UTC)
2022-06-13 16:38:17191.112.21.157443
QakBot
Offline
Yes (2022-06-13 16:40:04 UTC)2022-06-13 17:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 191.112.21.157. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2022-06-17 11:19:50285cfb144478d7086b0ae25131b04bfeDLL dlln/a
Quakbot
2022-06-16 13:03:249740b6afa7030d017140c34b2888992dDLL dlln/a
Quakbot
2022-06-15 15:22:3706db88634ff6edb135334121aad7f4d3DLL dlln/a
n/a
2022-06-14 17:34:21720a82245a5462c83432a687d304aa95DLL dllVirustotal results 36.36%
Quakbot
2022-06-14 10:59:58b6cf8dee2267bf44abcf4f331d08b80dDLL dllVirustotal results 50.00%
Quakbot
2022-06-14 10:59:4112999db814bcd91f7f354d5ad9409188DLL dllVirustotal results 46.27%
Quakbot
2022-06-14 10:59:283f381d022858e37606e4a2ebdc7da3e5DLL dllVirustotal results 47.76%
Quakbot
2022-06-14 10:59:23f2a827fef70dc1f2e57e8d489d668355DLL dllVirustotal results 49.25%
Quakbot
2022-06-14 10:59:18ce40dd9d32105a5f6030c8801f2642cfDLL dllVirustotal results 43.28%
Quakbot
2022-06-14 10:59:109e5af5dd988d516666554870e3effd95DLL dllVirustotal results 44.78%
Quakbot
2022-06-14 10:59:0583dfb7ed9de1bdd5995be5392447970cDLL dllVirustotal results 18.18%
Quakbot
2022-06-14 10:59:0000aeecabdaaaca4dd0c8ebd66d196375DLL dllVirustotal results 19.70%
Quakbot
2022-06-14 10:58:54137fb7fd6285bfe860ddf8710067808aDLL dllVirustotal results 18.18%
Quakbot
2022-06-14 10:58:379aba7753667ba3ad991395de46f5ee17DLL dllVirustotal results 44.78%
Quakbot
2022-06-14 10:58:2402185a48c22d83f73c7fe8906dec9db4DLL dllVirustotal results 20.00%
Quakbot
2022-06-14 10:58:19394be80b52b8fe7c4ab6d73530288b4aDLL dllVirustotal results 16.67%
Quakbot
2022-06-14 10:58:1583a25e3583928e2e13683a79b6b10890DLL dllVirustotal results 16.67%
Quakbot
2022-06-14 10:56:080a9b87662f29b8e6b8b7ed656675ced2DLL dllVirustotal results 21.21%
Quakbot
2022-06-14 01:08:000da7f5460b93f0c17913b188f330050dDLL dlln/a
Quakbot
2022-06-13 17:02:17ff13293575944987e2ed624a04d42049DLL dlln/a
Quakbot
2022-06-13 16:50:45718d7bf38234745e315943bd1f9a1b65DLL dlln/a
Quakbot
2022-06-13 16:50:35ed3968f792fa8ca7adcfe620aa87103cDLL dlln/a
Quakbot
2022-06-13 16:20:5621107e0f41829ecd0257a9308504a817DLL dllVirustotal results 25.37%
Quakbot