Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 54.39.98.141 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

IP address:	54.39.98.141
Hostname:	141.ip-54-39-98.net
AS number:	AS16276
AS name:	OVH
Country:	CA
First seen:	2021-08-25 14:51:00 UTC
Last online:	2022-01-15 08:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 54.39.98.141. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)	MD5 hash	File Type	Virustotal	Malware
2021-08-26 19:17:29	d228d41f0813904505f055c75da4d998	dll	n/a	Dridex
2021-08-25 21:18:15	ff21b8eb64d474799c99cd9e4aeebe85	dll	29.85%	Dridex
2021-08-25 18:13:17	6d7239cd98317213656a14f9994a812d	dll	24.62%	Dridex
2021-08-25 18:12:34	95d92915b1bad2c6f60254ef159937f8	dll	21.88%	Dridex
2021-08-25 18:09:53	6f29b8ca882ab27f5d0bcbe4ae23c940	dll	23.88%	Dridex
2021-08-25 16:06:12	a16edf648683d332fd82900741bb69cc	dll	22.39%	Dridex
2021-08-25 16:01:50	72be49d1b3f5ea6651b69b68b1e49cbc	dll	24.24%	Dridex
2021-08-25 15:41:32	e5ff936a89b3b2b5f2bc5fb937190bbd	dll	21.88%	Dridex
2021-08-25 15:40:49	8f61479cf0003dd2af9bdc1ca1d09791	xlsx	n/a	Dridex
2021-08-25 15:27:00	1104b59f5a1069fe6496fa98e2fe5f1c	dll	n/a	Dridex
2021-08-25 15:19:17	0fb1ad77eb98e6392eacf32b831b69d9	dll	24.24%	Dridex
2021-08-25 15:18:22	9584cb8b99a3b196bb35176329c86c12	xlsx	n/a	Dridex
2021-08-25 15:07:26	6a2d48899c57d400aae8ec0d25d1fa49	dll	22.73%	Dridex
2021-08-25 15:06:28	6e0693d6908bd5f3b096a2e345464bf2	xlsx	11.67%	Dridex
2021-08-25 14:57:08	2f447990399de9fbea36fbe048b01d6f	dll	22.39%	Dridex
2021-08-25 14:22:44	0fdb784f5c2dca9e625bbba1c3bdc2c9	dll	24.62%	Dridex