Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 5.44.57.191 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:5.44.57.191
Hostname:n/a
AS number:AS12772
AS name:ENFORTA-AS Enforta Autonomous System
Country:- RU
First seen:2021-11-11 20:55:08 UTC
Last online:2021-11-13 01:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse compltain sent?Last online (UTC)
2021-11-11 20:55:085.44.57.191443
TrickBot
Offline
No2021-11-13 01:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 5.44.57.191. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-11-16 08:59:3858072e9fae560e2361954313aae96219Executable exen/a
TrickBot
2021-11-11 11:14:2820f5e3bc7d2137b313112a317df18019DLL dllVirustotal results 15.15%
n/a
2021-11-11 10:55:17588373e4dda4793267626c1d5fc5a35aDLL dllVirustotal results 10.61%
n/a
2021-11-09 21:48:2407f8fa574a1c07ab4ea083c94e105532Executable exeVirustotal results 63.77%
Bayrob
2021-11-09 07:11:10b04cccd5b38948dfa0361c9c325f5bf1DLL dllVirustotal results 16.42%
TrickBot
2021-11-09 07:02:536611b446ddaccf6c7e175ec77d998584DLL dllVirustotal results 16.42%
TrickBot
2021-11-09 00:10:56092c5df2716ebe22402170294b1be4aeDLL dllVirustotal results 14.93%
TrickBot