Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 76.125.91.160 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:76.125.91.160
Hostname:c-76-125-91-160.hsd1.ar.comcast.net
AS number:AS7922
AS name:COMCAST-7922
Country:- US
First seen:2022-11-01 15:12:14 UTC
Last online:2022-11-28 19:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse complaint sent?Last online (UTC)
2022-11-01 15:12:1476.125.91.160443
QakBot
Offline
Yes (2022-11-01 15:15:04 UTC)2022-11-28 19:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 76.125.91.160. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2022-11-03 12:14:031a10d7257754bea8e8f946792f5ca019DLL dlln/a
n/a
2022-11-03 12:13:53c10a323ae9722d903f845e0129fa0d33ison/a
n/a
2022-11-03 12:13:40632d644e66e02a84a20dfe8c966419abzipn/a
n/a
2022-11-03 08:24:49f67d8cc790faee2af9c0a396579fef49DLL dllVirustotal results 8.57%
Quakbot
2022-11-01 19:11:566357313411883e697906ed776e50333fDLL dlln/a
n/a
2022-11-01 19:11:33ec99ad05447d2dc3b55d91f5efc35efcDLL dlln/a
n/a
2022-11-01 17:13:45d4b2471bfe6e1f07768b6fb8c262d647DLL dlln/a
Quakbot
2022-11-01 13:02:44ce2cc52b8dbff252a73c78f3e8c458dfDLL dlln/a
Quakbot
2022-11-01 13:02:112a5c06c301914c3b82efee3133ce4da3ison/a
Quakbot
2022-11-01 13:01:5677a4cdd809f00a9acf7f084c89d22fa3zipn/a
Quakbot