Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 195.123.238.36. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:195.123.238.36
Hostname:sgvsd.ah
Status:Offline
Spamhaus SBL:SBL459837
Malware:TrickBot
AS number:AS204957
AS name:LAYER6
Country:- SG
First seen:2019-09-21 03:26:45 UTC
Last seen:2019-09-25 16:34:25 UTC
Last online:2019-09-26

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-09-25 16:46:378e16967ee3fda9ff9f59ec5e221601d3Virustotal results 50/69 (72.46%) 195.123.238.36447TrickBot
2019-09-25 04:02:3565d05bbe1fdcaff84064272194ed516aVirustotal results 49/69 (71.01%) 195.123.238.36447TrickBot
2019-09-21 05:20:59e3ba8a6c2d68913a385305566735130fVirustotal results 47/70 (67.14%) 195.123.238.36447TrickBot

# of malware samples: 3