Browse Botnet C&Cs

You are currently viewing the database entry for the TrickBot botnet command&control server (C&C) 85.217.170.153. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:85.217.170.153
Hostname:v73778.vps-ag.com
Status:Offline
Spamhaus SBL:Not listed
Malware:TrickBot
AS number:AS44901
AS name:BELCLOUD
Country:- CY
First seen:2019-11-28 20:44:52 UTC
Last seen:2019-11-29 19:18:57 UTC
Last online:2019-12-07

Malware Samples


The table below documents all malware samples associated with this TrickBot botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-11-29 19:44:50f138bd247218ce563485503a2a1d9517Virustotal results 54/70 (77.14%) 85.217.170.153447TrickBot
2019-11-28 23:01:59a90c0919247201337d1c099d32b69022Virustotal results 45/70 (64.29%) 85.217.170.153447TrickBot
2019-11-28 21:21:3541ee19c0b9b3d119e80bf32402eb9318Virustotal results 53/71 (74.65%) 85.217.170.153447TrickBot

# of malware samples: 3