Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 198.61.167.176 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:198.61.167.176
Hostname:n/a
AS number:AS19994
AS name:RACKSPACE
Country:- US
First seen:2021-11-09 18:42:32 UTC
Last online:2021-11-19 13:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse compltain sent?Last online (UTC)
2021-11-09 18:42:32198.61.167.17610172
Dridex
Online
Yes (2021-11-25 15:41:47 UTC)2021-11-19 13:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 198.61.167.176. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-11-22 19:05:49c5c2bc8c1387744a10f7054545df7d05Executable exeVirustotal results 75.00%
Dridex
2021-11-22 19:05:25eb4f8d38eec9c93a9995900fdd54ab2fExecutable exeVirustotal results 76.47%
Dridex
2021-11-21 17:11:224f989dec39e2d5864d6a1c03fcb8a8a1Executable exeVirustotal results 67.16%
Dridex
2021-11-18 22:20:1007218b2bd80a8bcb0e415ba2898d3c2cExecutable exeVirustotal results 67.65%
Dridex
2021-11-17 19:39:157d3c0944693fbc757fca7ebb6864e5a4Executable exeVirustotal results 67.65%
Dridex
2021-11-16 21:30:34af22fadc4965159e93bcbed37986a88cExecutable exeVirustotal results 66.18%
Dridex
2021-11-09 06:36:39a2c696697ddacc87b029f9ec7b96b499Executable exeVirustotal results 72.46%
Dridex
2021-11-08 23:24:20b1332b83296155a2ded65c1b69af62cfExecutable exeVirustotal results 56.52%
Dridex