Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 85.119.150.159. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:85.119.150.159
Hostname:rr50.varejovips.com
Status:Offline
Spamhaus SBL:SBL453960
Malware:TrickBot
AS number:AS49505
AS name:SELECTEL
Country:- RU
First seen:2019-07-08 23:54:59 UTC
Last seen:2019-07-12 03:23:37 UTC
Last online:2019-07-13

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-07-15 03:15:518747bbeb8e3d5b01873e19680e55c249Virustotal results 20/65 (30.77%) 85.119.150.159447TrickBot
2019-07-13 13:26:0948cf54dfecae71e6d174b0197de9197bVirustotal results 27/71 (38.03%) 85.119.150.159447TrickBot
2019-07-13 03:38:020d6bef0e5e7198f855621551fc38d526Virustotal results 29/70 (41.43%) 85.119.150.159447TrickBot
2019-07-12 10:32:46fd44afa2ddf06d6e5f9747d56d2616e0Virustotal results 34/70 (48.57%) 85.119.150.159447TrickBot
2019-07-11 20:50:29aee0bdc8d4fe7f091ec6ac2008df4a6bVirustotal results 27/71 (38.03%) 85.119.150.159447TrickBot

# of malware samples: 5