Browse Botnet C&Cs

You are currently viewing the database entry for the D botnet command&control server (C&C) 118.174.151.27. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:118.174.151.27
Hostname:node-m3.ll-118-174.static.totisp.net
Status:Offline
Spamhaus SBL:SBL261824
Malware:
AS number:AS131293
AS name:TOT-LLI-AS-AP TOT Public Company Limited, TH
Country:- TH
First seen:2015-06-30 12:04:07 UTC
Last seen:2015-08-24 00:00:23 UTC

Malware Samples


The table below documents all malware samples associated with this D botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2015-07-12 16:57:16c35724366b56798cb9d084d8c3a4fc56n/a118.174.151.27943Dridex
2015-07-11 18:38:15587803ef6da656ee38ab93a0ea091babVirustotal results 3/56 (5.36%) 118.174.151.27943Dridex
2015-07-10 18:13:19a3144ab525c8976947a941bcce7945dbVirustotal results 2/56 (3.57%) 118.174.151.27943
2015-07-07 16:08:11cf8a658e8fcf856f753051424d4c423dn/a118.174.151.27943Dridex
2015-07-05 08:49:00532e1d9abd1ff790cb0815281aaa292dn/a118.174.151.27943Dridex
2015-07-04 14:37:5844ca65430ac1aa396e42dfb4862c9212Virustotal results 2/56 (3.57%) 118.174.151.27943Dridex
2015-07-03 16:11:45469eaa7c5ba9e05d2ad96d9254139070Virustotal results 0/55 (0.00%) 118.174.151.27943Dridex
2015-07-02 10:23:3362a5ce2f1c1393cc1a92764af711c2b1Virustotal results 3/55 (5.45%) 118.174.151.27943Dridex
2015-07-01 13:03:57865164ef97c50bdd8e8740621234a3cfVirustotal results 1/55 (1.82%) 118.174.151.27943Dridex
2015-07-01 09:38:2630e9c697261914b4cf506074fa518818Virustotal results 3/56 (5.36%) 118.174.151.27943Dridex
2015-07-01 03:46:18b16c64284354646cc5ae9071fb53fceeVirustotal results 0/55 (0.00%) 118.174.151.27943Dridex
2015-06-30 12:04:070a977dfcb93301f1841dbe2272d3102bVirustotal results 0/56 (0.00%) 118.174.151.27943Dridex

# of malware samples: 12