Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 59.4.68.75 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:59.4.68.75
Hostname:n/a
AS number:AS4766
AS name:KIXS-AS-KR Korea Telecom
Country:- KR
First seen:2021-08-02 08:42:00 UTC
Last online:2021-09-14 06:xx:xx UTC
Malware:TrickBot

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-08-02 08:42:0059.4.68.75443
TrickBot
Offline
2021-09-14 06:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 59.4.68.75. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-09-15 15:09:11ae5a227472b36642f4325c2fd4f884f5DLL dlln/a
TrickBot
2021-09-04 19:05:02dc536ce41032ca1b4b0f9eda0e0c6143Executable exen/a
n/a
2021-08-23 20:16:548f83f9e30443e96702e0d64aba4fba3eExecutable exen/a
n/a
2021-08-22 16:28:0682f25290c316c8715597854fb3fbcc6fExecutable exeVirustotal results 46.38%
n/a
2021-08-06 07:10:482ce8fb29913ed1294dd0b18bc7c84fbfExecutable exeVirustotal results 40.00%
TrickBot
2021-08-01 20:01:16f795cb57deb8c256e264fb6356059e80DLL dllVirustotal results 33.82%
TrickBot