Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 45.234.248.146 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:45.234.248.146
Hostname:45-234.248-146.rev.voanet.br
AS number:AS267388
AS name:TRANSMITT TELECOM
Country:- BR
First seen:2021-02-04 17:18:22 UTC
Last online:2021-03-02 23:xx:xx UTC
Malware:TrickBot

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-02-04 17:18:2245.234.248.146447
TrickBot
Online
2021-03-02 23:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 45.234.248.146. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-02-17 13:40:00100b0beec2c73af29eae2666f2a40535Word file xlsn/a
TrickBot
2021-02-13 19:14:386fae87fd37f1ded42a548ced016b392eExecutable exen/a
TrickBot
2021-02-11 18:00:09acfc6be3e95ea8cb55512b3e046850b1Executable exen/a
TrickBot
2021-02-10 21:27:0541f9024d1843c6978c097266f577b90cWord file xlsn/a
TrickBot
2021-02-08 20:02:06e5dd9dbba7348e864fceb6a9f1da9bf5Executable exen/a
TrickBot
2021-02-05 21:41:0102a8ce3e5dcdb8071a780e0bb13f0951Executable exen/a
TrickBot
2021-02-05 20:35:5247843de93c1d0e93306e5c5fc9901212Executable exen/a
TrickBot
2021-02-04 21:39:5754419b077e2dcf89327f92dedb27d0ffExecutable exen/a
TrickBot
2021-02-04 18:58:381f412ffa8efcc8ff3769f68abd21ce6bExecutable exeVirustotal results 52.86%
TrickBot
2021-02-04 16:27:55acbcd4d317958d318b28dd3acad2d8cbWord file xlsn/a
TrickBot