Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 31.53.29.207 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:31.53.29.207
Hostname:host31-53-29-207.range31-53.btcentralplus.com
AS number:AS2856
AS name:BT-UK-AS BTnet UK Regional network
Country:- GB
First seen:2023-04-25 11:00:55 UTC
Last online:2023-04-26 18:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse complaint sent?Last online (UTC)
2023-04-25 11:00:5531.53.29.2072222
QakBot
Offline
 Yes (2023-04-25 11:05:05 UTC)2023-04-26 18:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 31.53.29.207. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2023-04-28 18:21:25600b306e2665f43895cf19dc54b02688DLL dllVirustotal results 48.57%
Quakbot
2023-04-28 03:36:43db419fe40bd816f6ed6e6e4c03716042DLL dlln/a
Quakbot
2023-04-28 02:19:56d05334aeeab9eda2fe4f5d2c62400095DLL dllVirustotal results 47.14%
Quakbot
2023-04-28 02:16:20617f65f8778025f44cae8657a499550awsfn/a
Quakbot
2023-04-26 15:06:33c360291329c2d211b4f8b6b636b69c8fDLL dlln/a
Quakbot
2023-04-26 13:52:25a56441fa1c5dc694465490640528da6bwsfn/a
Quakbot
2023-04-26 07:59:25a059d359b7d46d6847c3e908ec8cd03bDLL dllVirustotal results 37.68%
Quakbot
2023-04-26 07:01:5699813b65f8dc4ad16c091efe9efbb095DLL dlln/a
Quakbot
2023-04-26 07:01:47afbbdd085461a6ea655d583a4c7ec670DLL dlln/a
n/a
2023-04-26 04:57:045dd68cb6f80b77af48ef765f4ef13d1dwsfn/a
Quakbot
2023-04-26 04:52:249d1df044dc354beed47b0105e8a99a53DLL dllVirustotal results 30.00%
Quakbot
2023-04-26 04:49:477fcc267a7d30899a6e90753114530052wsfn/a
Quakbot