Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 195.210.28.233 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	195.210.28.233
Hostname:	workoholik.eu
AS number:	AS51013
AS name:	WEBSUPPORT-SRO-SK-AS
Country:	SK
First seen:	2021-03-14 10:40:47 UTC
Last online:	2021-09-29 08:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)	IP address	Port	Malware	Status	Abuse complaint sent?	Last online (UTC)
2021-03-14 10:40:47	195.210.28.233	6601	Dridex	Offline	No	2021-09-29 08:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 195.210.28.233. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-06-11 21:57:40	3cb23a34e2d5593760754bcb841128a9	exe	68.57%	Dridex
2021-06-11 21:50:07	3412ae31a32aebb587994d70cda44bf6	exe	77.14%	Dridex
2021-03-16 21:52:49	4dce6fd1f7c7434d9822655818adab00	exe	62.86%	Dridex
2021-03-16 21:44:09	1615b80418d397c3b4fa7170f2fabb03	exe	60.87%	Dridex
2021-03-16 21:35:19	3b0252be78fcd61e329ae22d53298900	exe	63.38%	Dridex
2021-03-16 21:33:23	d18788b1d97e0b75bbdfadbbdb6dc23c	exe	60.87%	Dridex
2021-03-16 21:31:21	44b3161fd9c8411235aa0c57b4356815	exe	63.24%	Dridex
2021-03-14 01:46:14	abeaec1f648f48c5a50bf9c5f0c96d09	exe	45.59%	Dridex
2021-03-14 00:55:44	a7ef8d0480e217690c30a210ad43b98a	exe	47.14%	Dridex
2021-03-13 23:12:52	a7fe01f605050d5c5cae4368576192dd	exe	44.62%	Dridex
2021-03-13 21:37:24	ab6a37150540028e807562f6131c1a64	exe	47.14%	Dridex
2021-03-13 21:21:34	add8dccf6d9a3132a17eeba57cbc0183	exe	47.06%	Dridex