Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 212.112.86.37 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:212.112.86.37
Hostname:cs-212-112-86-37.to1.ccws.it
AS number:AS48815
AS name:CRITICALCASE
Country:- IT
First seen:2021-10-11 07:48:40 UTC
Last online:2023-12-02 11:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse complaint sent?Last online (UTC)
2021-10-11 07:48:40212.112.86.379676
Dridex
Offline
Yes (2021-11-25 15:40:48 UTC)2023-12-02 11:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 212.112.86.37. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-12-07 15:41:23505f298080a1b0802fe713031feb9437Executable exeVirustotal results 73.91%
Dridex
2021-11-27 16:52:5273e70c42af1cca5a6cb848cfd84e8429Executable exeVirustotal results 57.35%
Dridex
2021-10-25 19:39:52ab9a766ffa24d55d1a9da5e52003b2e6Executable exeVirustotal results 64.18%
Dridex
2021-10-18 20:24:09f8a0408114734767666faacffa3ee989Executable exeVirustotal results 66.67%
Dridex
2021-10-12 23:35:07a74ae9c7f1225e6e1813f901c190ca1aExecutable exeVirustotal results 57.97%
Dridex
2021-10-12 20:28:18ae3e1be9d6fc64564da19739cec00996Executable exeVirustotal results 53.73%
Dridex
2021-10-10 22:56:51ac41b32112843274e4ffae34e11867bfExecutable exeVirustotal results 61.19%
Dridex
2021-10-10 04:35:44afc9a9d3e8043cce5cd1abc6d0c3e41cExecutable exeVirustotal results 58.33%
Dridex