Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 85.87.148.200 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:85.87.148.200
Hostname:200.85-87-148.dynamic.clientes.euskaltel.es
AS number:AS12338
AS name:EUSKALTEL
Country:- ES
First seen:2021-07-03 06:12:46 UTC
Last online:2021-07-09 11:xx:xx UTC

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusAbuse complaint sent?Last online (UTC)
2021-07-03 06:12:4685.87.148.200443
TrickBot
Offline
No2021-07-09 11:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 85.87.148.200. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-07-24 06:04:40c801853ca93819bfbbe306033c769176Executable exeVirustotal results 18.57%
TrickBot
2021-07-23 07:42:50b010855ccb2d389d6aa29d594ffa79eeExecutable exeVirustotal results 52.86%
n/a
2021-07-20 18:31:23aa0db48d4be58014a2d2d3e7026c0073DLL dlln/a
n/a
2021-07-20 15:55:199d3883fbd7070b814c734ae913457bcbjsn/a
n/a
2021-07-06 06:47:51d0acc9f528c8a2ea5704d3fcfa1121d5DLL dlln/a
TrickBot
2021-07-06 05:17:22d057654b849e88acdccfc844a0508cffDLL dlln/a
n/a
2021-07-05 23:13:2571a6d2f09d0f156d18f9ee0c2bd3f39bDLL dlln/a
n/a
2021-07-03 02:19:5414980de04528d64f51bfa4447f3b0ab6DLL dlln/a
TrickBot
2021-07-03 02:17:002fcff18479bff0819109e52435c28b2cDLL dlln/a
TrickBot