Malware Botnet C&C

You are currently viewing the database entry for the malware botnet command&control server (C&C) hosted at 89.106.251.163 . You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


IP address:89.106.251.163
Hostname:163.251-106-89.FTTH.rus-com.net
AS number:AS5563
AS name:URAL Ural Regional Net
Country:- RU
First seen:2021-01-21 13:53:36 UTC
Last online:2021-01-26 08:xx:xx UTC
Malware:Emotet

Botnet C&Cs

The table below shows all botnet C&Cs know to Feodo Tracker that are hosted on this host.

First seen (UTC)IP addressPortMalwareStatusLast online (UTC)
2021-01-21 13:53:3689.106.251.16380
Emotet
Offline
2021-01-26 08:xx:xx

Referencing Malware Samples

The following table shows the most recent malware samples associated with malware botnet C&Cs hosted on 89.106.251.163. Please consider that the output is limited to the 500 most recent malware samples.

Time stamp (UTC)MD5 hashFile TypeVirustotalMalware
2021-01-26 07:08:164807a2df2ebf89e20fa1262f1981c79aDLL dlln/a
Heodo
2021-01-25 20:37:05aadd4aaa957e7d03ccb8070cd40fbb1bDLL dlln/a
Heodo
2021-01-23 20:56:599b4b873b7aec4d31e3a05310adad307cDLL dllVirustotal results 60.00%
Heodo
2021-01-16 20:18:22c0792a6e1bc76254c5383827b5b43a4fDLL dllVirustotal results 57.97%
Heodo