Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 5.34.176.218. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:5.34.176.218
Hostname:sitha.xq
Status:Offline
Spamhaus SBL:Not listed
Malware:TrickBot
AS number:AS204957
AS name:LAYER6
Country:- SG
First seen:2020-01-14 21:17:48 UTC
Last seen:2020-01-24 14:58:04 UTC
Last online:2020-01-28

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-24 16:56:57d06802dadc516cc379866ea55881cf0eVirustotal results 50 / 73 (68.49%) 5.34.176.218447TrickBot
2020-01-23 20:53:20a1d64fbfdf2fe9945cc18d1418b99fc6Virustotal results 48 / 72 (66.67%) 5.34.176.218447TrickBot
2020-01-21 10:20:2489a2ed30b641491511524e78d3553cebn/a5.34.176.218447TrickBot
2020-01-21 10:18:23cac875ff9655622cc47c74eca0479317n/a5.34.176.218447TrickBot
2020-01-21 09:44:511251211a4086e7002886ff3d1a7eedd9n/a5.34.176.218447TrickBot
2020-01-19 23:11:513459d3a3ca54e48a5aa7bfa97ee8dc8cVirustotal results 42 / 70 (60.00%) 5.34.176.218447TrickBot
2020-01-19 22:36:54c8d7c4f01dd95b4c16ada32f6e9a54bfVirustotal results 43 / 71 (60.56%) 5.34.176.218447TrickBot
2020-01-19 20:37:10829c8aa3a1aa5f8d5aed73fd06da7699Virustotal results 44 / 71 (61.97%) 5.34.176.218447TrickBot
2020-01-18 18:00:35a1746f1d6aad2bb055404969e990cadeVirustotal results 48 / 73 (65.75%) 5.34.176.218447TrickBot
2020-01-18 16:08:57d885cea9fca74d823bd5942ac0a91760n/a5.34.176.218447TrickBot
2020-01-16 00:33:000bd20ee701fedc5400d10ff617dcb254n/a5.34.176.218447TrickBot
2020-01-16 00:21:2270c34c996d23fa2ee7ae24a895b46656n/a5.34.176.218447Heodo
2020-01-14 21:27:28df769e496082c90d3e9e244d1a73ce32n/a5.34.176.218447TrickBot

# of malware samples: 13