Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 197.254.14.238 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:197.254.14.238
Hostname:197.254.14.238.acesskenya.net
AS number:AS15808
AS name:ACCESSKENYA-KE ACCESSKENYA GROUP LTD is an ISP serving
Country:- KE
First seen:2021-05-21 11:41:08 UTC
Last online:2021-06-16 20:xx:xx UTC
Malware:TrickBot

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-05-21 11:41:08197.254.14.238443
TrickBot
Online
2021-06-16 20:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 197.254.14.238. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-06-02 17:42:46e4d1a750035fe0b45be043fed1a711d4Executable exen/a
n/a
2021-06-01 15:21:596aa7925f6d03c57b8b7ff2a05f6f06bbExecutable exeVirustotal results 33.33%
TrickBot
2021-05-28 07:31:17582671a5b5f2170a49333296aa81b84bDLL dllVirustotal results 13.64%
n/a
2021-05-24 17:05:16a915d76c4494efea9c6b39250604d7c5Executable exeVirustotal results 11.59%
TrickBot
2021-05-21 05:20:07775ef35679b84c2aaa2ba3d870af1762Executable exeVirustotal results 58.21%
TrickBot