Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 218.38.136.5 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	218.38.136.5
Hostname:	n/a
AS number:	AS9318
AS name:	SKB-AS SK Broadband Co Ltd
Country:	KR
First seen:	2021-05-10 20:07:51 UTC
Last online:	2021-06-04 07:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)	IP address	Port	Malware	Status	Abuse complaint sent?	Last online (UTC)
2021-05-10 20:07:51	218.38.136.5	443	Dridex	Offline	No	2021-06-04 07:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 218.38.136.5. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-05-14 00:38:44	a34b3fd3f68d4685cc7915682bc84648	exe	55.07%	Dridex
2021-05-13 18:38:29	a9859f4847f2eebf052d91666a4a837b	exe	60.00%	Dridex
2021-05-13 16:10:42	a9cdcd42b0a963dcecfad51d0e6967fa	exe	52.86%	Dridex
2021-05-13 15:57:26	a681f401e6d9312ae4b6b91075df1c6d	exe	57.14%	Dridex
2021-05-12 08:42:58	a563e66003600f8e7d462f088b30729c	exe	53.62%	Dridex
2021-05-12 08:25:35	a101378cf7fa0799a3a3afe963b81e27	exe	53.62%	Dridex
2021-05-12 07:40:13	a43d35ac0d7e220df7c703717d5f6fab	exe	67.14%	Dridex
2021-05-12 07:08:59	a48bd5c2ec44b3a160913d9507d1dad2	exe	55.07%	n/a
2021-05-12 06:24:20	a1d1bf9b7fc6177b920946d623d1fb32	exe	54.29%	Dridex
2021-05-11 18:12:24	05681cc6a6c46d4cf9fe9f548e9dd32e	exe	55.71%	Dridex
2021-05-11 18:11:13	f6b943d11e7aae97991fb0cbe9573beb	exe	55.88%	Dridex
2021-05-11 18:10:39	bf7301e617105a794d7232a2c082933c	exe	55.88%	Dridex
2021-05-11 18:08:45	d37fd3e0a4cd138201c51deb69444777	exe	53.03%	Dridex
2021-05-10 09:27:53	8e299875595a2526ead6661cd2d12c3d	exe	52.86%	Dridex