Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 24.139.11.137 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:24.139.11.137
Hostname:host-24-139-11-137.public.eastlink.ca
AS number:AS11260
AS name:EASTLINK-HSI
Country:- CA
First seen:2023-04-20 16:35:06 UTC
Last online:2023-05-01 19:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse complaint sent?Last online (UTC)
2023-04-20 16:35:0624.139.11.137443
QakBot
Offline
 Yes (2023-04-20 16:40:04 UTC)2023-05-01 19:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 24.139.11.137. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2023-05-03 21:10:54b94e6f1f0081d9aa224cd98e06ae5242DLL dllVirustotal results 55.07%
Quakbot
2023-04-23 08:47:08a9babb4ab1881bea0aa420c19a6922c3DLL dlln/a
Quakbot
2023-04-22 14:02:070bf34a30274079dc9661b42ee06aca8bDLL dlln/a
Quakbot
2023-04-22 11:13:571056741263fc54e33479f21602d92a63DLL dlln/a
Quakbot
2023-04-22 11:09:58dab368a36feeb24fcb413a5bb84ecc3bDLL dllVirustotal results 38.57%
Quakbot
2023-04-22 09:36:073f61c477c51d0146653a94dbbffbdc25DLL dlln/a
Quakbot
2023-04-20 16:28:3245f241fd144ec617a7610cb4edc51f30DLL dllVirustotal results 21.31%
n/a
2023-04-20 04:33:18f41106709593a75602bffe4e075bf084wsfn/a
Quakbot
2023-04-14 07:23:44a76e4ef5920c368297cc466456925dadDLL dlln/a
Quakbot
2023-04-14 01:05:310686349cd33c88a42d651443d101c999DLL dlln/a
Quakbot
2023-04-13 23:45:16bed48183bb31b20d9a7602c156c9bb8aDLL dlln/a
Quakbot
2023-04-13 19:05:1221f2886c7d55b1a113b6557b91de2597DLL dlln/a
Quakbot