Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 23.227.206.136. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:23.227.206.136
Hostname:136.206.227.23.static.swiftway.net
Status:Offline
Spamhaus SBL:SBL460465
Malware:TrickBot
AS number:AS35017
AS name:SWIFTWAY-AS Netherlands
Country:- US
First seen:2019-09-26 20:32:27 UTC
Last seen:2019-09-28 01:59:55 UTC
Last online:2019-09-28

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-09-30 08:28:10bfbc3991049f67787649f1af2d999282Virustotal results 52/71 (73.24%) 23.227.206.136447TrickBot
2019-09-28 02:16:44fa98ed9871108888a83769f650023ca8Virustotal results 51/70 (72.86%) 23.227.206.136447TrickBot
2019-09-27 16:12:17587a40e455733017fed7c12ad6fd6d94Virustotal results 50/68 (73.53%) 23.227.206.136447TrickBot
2019-09-27 15:11:295030e025e5947343117d80bffd8e5c0dVirustotal results 51/70 (72.86%) 23.227.206.136447TrickBot
2019-09-27 14:38:39934a1c35f10281eb91e5e5da45d62f18Virustotal results 52/69 (75.36%) 23.227.206.136447Simda
2019-09-27 05:50:34c027119796c937bdd2bbf598c0c0e97bVirustotal results 51/69 (73.91%) 23.227.206.136447TrickBot
2019-09-27 01:28:081d8e91962aad237ccb59b662c16e7defVirustotal results 50/70 (71.43%) 23.227.206.136447TrickBot
2019-09-26 20:45:083ea0d1830d39658bc875f0f1b03fb81cVirustotal results 54/70 (77.14%) 23.227.206.136447TrickBot
2019-09-07 20:59:00a3f71677f039e6ea582bb83865772cacVirustotal results 43/70 (61.43%) 23.227.206.136447CoinMiner
2019-08-05 04:18:528888477782652b383777cb35dfa13b06Virustotal results 16 / 70 (22.86%) 23.227.206.136447Loki
2019-08-05 04:18:528888477782652b383777cb35dfa13b06Virustotal results 16 / 70 (22.86%) 23.227.206.136447Loki
2019-08-05 04:18:528888477782652b383777cb35dfa13b06Virustotal results 16 / 70 (22.86%) 23.227.206.136447Loki

# of malware samples: 12