Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 195.123.240.197. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:195.123.240.197
Hostname:situatioh.shx
Status:Offline
Spamhaus SBL:Not listed
Malware:TrickBot
AS number:AS204957
AS name:LAYER6
Country:- US
First seen:2020-01-28 22:53:32 UTC
Last seen:2020-02-01 11:58:48 UTC
Last online:2020-02-02

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-02-05 06:06:2200706ec6f8f5cc2c24619cc82f6f6532n/a195.123.240.197447TrickBot
2020-02-04 18:25:264a43e26c6cab4ef76e4d6f756fbd3cdaVirustotal results 34 / 73 (46.58%) 195.123.240.197447TrickBot
2020-02-02 15:54:25afb21c5f8d403c0530876d53a9acd9d0Virustotal results 27 / 71 (38.03%) 195.123.240.197447TrickBot
2020-02-02 08:48:414fdea70ea05de4c25221a457ee15708cn/a195.123.240.197447TrickBot
2020-02-01 15:13:21c441f5589d52c140c7d449bc898b4085Virustotal results 46 / 72 (63.89%) 195.123.240.197447TrickBot
2020-02-01 14:52:1679d319dced086629fe45b1499cb4248eVirustotal results 47 / 73 (64.38%) 195.123.240.197447AgentTesla
2020-02-01 14:50:113090a5fbb5e99fba3730539f107d7f5bVirustotal results 46 / 73 (63.01%) 195.123.240.197447TrickBot
2020-01-29 01:55:48dcd41ba094aa0714a7e2212c66311bfdn/a195.123.240.197447TrickBot
2020-01-28 23:04:0772a61cf84d5832e2d8b5f476a17ed4ecn/a195.123.240.197447TrickBot

# of malware samples: 9