Feodo Tracker :: 12.162.84.2

C&C Information

Feodo C&C:12.162.84.2
Version:E
Host status:offline
Spamhaus SBL:SBL378477
AS number:AS7018
AS name:ATT-INTERNET4 - AT&T Services, Inc., US
Country:- US
Firstseen (UTC):2017-10-31 08:50:28
Lastseen (UTC):2018-08-20 04:38:35

Referencing malware binaries

Latest 100 malware binaries referencing this Feodo C&C:

Timestamp (UTC)MD5 HashFilesizeVTHostPortMethod
2018-08-20 03:34:32a88586d76adb7c4ad4b9418956be2cc21'296'064 bytesVirustotal results 10/66 (15.15%) 443P
2018-08-20 02:32:49db36257b0e1cd5d7ef25abbcc1816c1336'490 bytesn/a443P
2018-08-20 01:30:14ae6c59e0d87f03890820d52f20eb47fb485'181 bytesVirustotal results 47/68 (69.12%) 443P
2018-08-20 00:27:201bd9088adaef790d548b4ff07f5a563d185'344 bytesVirustotal results 39/67 (58.21%) 443P
2018-08-19 23:25:42388c7ea4c8d3f96f36ea0eacbac31635136'192 bytesVirustotal results 51/67 (76.12%) nicru.supermicrotransapi.ru443POST
2018-08-19 22:22:224c33c9dfe70eb647eeb54e7114c59f3529'516 bytesVirustotal results 53/67 (79.10%) 443P
2018-08-19 21:18:48fa3202743910c20e4d0977cc05d7734d419'328 bytesVirustotal results 44/66 (66.67%) mel.cloudcontentsmak.com443POST
2018-08-19 07:05:278b7182a0675567593b9967c8d15d9f47539'136 bytesVirustotal results 23/65 (35.38%) nicru.supermicrotransapi.ru443P
2018-08-19 06:34:374bf4b6adfdd2ea2234aa3dd2ba08306237'912 bytesn/a443P
2018-08-19 06:32:26cfdf66dccdc2343380d5ef32ff5780db106'425 bytesn/asmart.cloudnetwork.kz443P
2018-08-19 06:29:5761641afc980e06ee128b1be227b1a922103'569 bytesn/a443P
2018-08-18 17:57:58fe6a4e9d8d9e77abd0b68fe25c12fbe598'304 bytesn/anicru.supermicrotransapi.ru443P
2018-08-18 17:55:53f60147b3afb0d0240ae8931324e58335124'928 bytesVirustotal results 48/69 (69.57%) 443P
2018-08-18 17:53:08eb995a5f74d47eadaa14a9ebfa9f4d7c32'768 bytesVirustotal results 29/57 (50.88%) 443P
2018-08-18 17:50:22e2fa5ba816e7cc44dbf69fde95a3800f311'296 bytesn/a443P
2018-08-18 17:47:29d93937c32fa00e4ca93a93a192d9c2c137'917 bytesn/a443P
2018-08-18 17:44:13cd5996383b347325be07c458ab729956177'900 bytesn/a443P
2018-08-18 17:40:58c04b2e593a029348cc2bf1aee21fe607294'912 bytesVirustotal results 43/57 (75.44%) 443P
2018-08-18 17:37:49b462f99ae7fc7056ec02c7589b3dafca37'656 bytesn/asmart.cloudnetwork.kz443P
2018-08-18 17:34:19a81e9b14f661b6511874f78884cde232316'424 bytesVirustotal results 50/67 (74.63%) nicru.supermicrotransapi.ru443POST
2018-08-18 17:29:1797c8001e2b329b6635cf132a2c45446a37'912 bytesn/asmart.cloudnetwork.kz443P
2018-08-18 16:35:42a39573674376b9550f94a9b2a54f25d3104'908 bytesn/a443P
2018-08-18 16:34:435f1b9d385183bcb58dd6a52d0ae7dc7d135'477 bytesn/a443P
2018-08-18 06:52:03fb8d5efbfa4b248f8a491eb90cc78c2a124'288 bytesn/a443P
2018-08-18 06:49:57d03ee85ac824100d4064a64bb84307cf294'912 bytesVirustotal results 41/57 (71.93%) 443P
2018-08-18 06:48:08ac028e780b4b05ce25798c78edc689f5124'256 bytesn/a443P
2018-08-18 06:46:087346244642d79d98075a481a262e426e208'909 bytesVirustotal results 53/68 (77.94%) 443P
2018-08-18 06:44:12312b064a059cc2ee7e5cc7df85587a2f294'912 bytesn/a443P
2018-08-18 05:35:49bbfd4e3ffb8dcac23727108f7ba5951f144'882 bytesn/a443P
2018-08-18 04:55:130ab05896b9d682806462a3471304a1281'187'744 bytesVirustotal results 16/68 (23.53%) nicru.supermicrotransapi.ru443P
2018-08-17 14:07:110e88968f98ccaf44c397a5d90ac7f4e1104'913 bytesn/a443P
2018-08-17 11:26:47b2e358e10075bfc39d03bcdc623b0f4e39'420 bytesn/a443P
2018-08-17 09:02:5905c94f2e523b3a70718b3a467984b890104'849 bytesn/a443P
2018-08-17 07:18:01f9d096763d25ac9cdc77a52299093e36106'148 bytesn/a443P
2018-08-17 05:42:31c3ab33ffef7331b09ba80ceda0221b7e691'712 bytesVirustotal results 28/68 (41.18%) 443P
2018-08-17 05:40:5915f00760a3e3f7ec6af2daed31c238c6393'216 bytesVirustotal results 20/65 (30.77%) 443P
2018-08-16 13:18:57b6f32f29312d1daf65756b5f8f413ab3103'632 bytesn/a443P
2018-08-16 10:52:50ecbcc79aed305df03b31fb4ff9e1422498'304 bytesn/a443P
2018-08-16 10:46:41036aad14d9964cce4ea459286549ec36172'070 bytesn/a443P
2018-08-16 08:25:18fef43d1796e0a04c4b138677c023b055368'356 bytesn/a443P
2018-08-16 08:22:38f5997c30751b9fb1df2c5f93ad152693294'912 bytesn/anicru.supermicrotransapi.ru443POST
2018-08-16 08:18:12e605793fbbe6537f2c9b7f0128979711203'264 bytesVirustotal results 52/68 (76.47%) 443P
2018-08-16 08:16:10e0856ff47b7386a2dec62d423c28c1d9334'336 bytesVirustotal results 53/69 (76.81%) 443P
2018-08-16 08:11:36d2fdfae42f58a22a06dac78f8eb331f1172'070 bytesn/a443P
2018-08-16 08:09:06cc40cc9ba94760c061f9f588874de7e1367'172 bytesVirustotal results 48/55 (87.27%) 443P
2018-08-16 08:06:25c43023cdffa8e2a004409a560a15e7d3365'764 bytesVirustotal results 48/55 (87.27%) 443P
2018-08-16 08:04:14bd172069c67e44b1231b9e1d20e13734101'300 bytesn/amel.cloudcontentsmak.com443P
2018-08-16 08:01:450c122c96b9cbbd9dc06c4901a000dad886'016 bytesVirustotal results 51/67 (76.12%) 443P
2018-08-16 08:01:080c04f534c3cece661b7569594d97e987301'855 bytesn/a443P
2018-08-16 07:58:350bda02a225145bc5fdfaac160c6737d7179'280 bytesVirustotal results 56/69 (81.16%) 443P
2018-08-16 07:57:550bd23263a9cd6ddb57e1be0334aeaf0f913'434 bytesn/a443P
2018-08-16 07:56:30a29bc5eda38b07ad77127f8229c1d9b6101'300 bytesn/a443P
2018-08-16 07:54:580ba6e83ffdd9d48e92cc09532b27e248109'784 bytesVirustotal results 41/68 (60.29%) 443P
2018-08-16 07:53:26980821dfc9855d083aadd8fad232ce25155'648 bytesn/amel.cloudcontentsmak.com443P
2018-08-16 07:51:43923413afe3f6fac5ce0d5faa0c1fdf6e294'912 bytesn/a443P
2018-08-16 07:49:580b512639bae31c1a0a06a05ac2211da91'050'894 bytesn/astatic.apiinformationsec.com443POST
2018-08-16 07:48:1786b88c1e0757504c487b30a9307a51f8316'424 bytesVirustotal results 51/68 (75.00%) 443P
2018-08-16 07:46:3880e3d3cf00451ee548a958e57e2a6e67123'744 bytesVirustotal results 59/67 (88.06%) 443P
2018-08-16 07:44:357b4edeb33dc4dce9dbd075602d32ad7d172'070 bytesn/a443P
2018-08-16 07:42:260ad61c3f8a048d239b718dcc6ec41ba91'048'464 bytesn/astatic.apiinformationsec.com443P
2018-08-16 07:41:040abc5318e6d6fd827f69c5681ccf3ea344'032 bytesVirustotal results 56/67 (83.58%) 443P
2018-08-16 07:39:100a9ec41d7080c51033ba106ae610407b67'822 bytesn/a443P
2018-08-16 07:37:360a7f6ff869de2974848068c5c5f6fa8b221'189 bytesn/a443P
2018-08-16 07:34:000a44f1527186b3a5976efa175682f1e4413'928 bytesVirustotal results 18/53 (33.96%) static.apiinformationsec.com443P
2018-08-16 07:31:3951104030cd3d54158abf8784fe930131101'300 bytesn/a443P
2018-08-16 07:25:353d926e0d04991cabc203e8339ea38125364'574 bytesn/a443P
2018-08-16 07:22:2633cb245ab933d5b0711c5d478f19a7c1155'648 bytesn/a443P
2018-08-16 07:05:1195dbb514fe2c9d5a9260ce36c77c0dd7137'870 bytesn/a443P
2018-08-16 07:02:585229bfc4872cfdfb8d5afda5b0280325575'488 bytesn/a443P
2018-08-16 06:17:3504c07b746def4af2719d21ebd283524448'484 bytesn/a443P
2018-08-16 06:05:5203dbef0c8dce8dc0e4137699adc307d41'046'824 bytesn/amel.cloudcontentsmak.com443P
2018-08-16 05:12:5900717836c0b154b2242c7138157675d1109'788 bytesVirustotal results 41/68 (60.29%) 443P
2018-08-16 04:09:592f5703335716d1d5c8e533d699c5ceae861'112 bytesn/a443P
2018-08-16 02:06:222974529ff1b008abf70a47503dc9cbf316'536 bytesVirustotal results 51/68 (75.00%) 443P
2018-08-16 01:02:584b9e0bd2937b502ae4e4bd2dfeeb0c68412'255 bytesVirustotal results 6/68 (8.82%) 443P
2018-08-16 00:01:12e89b7b5ae788d2094e32b804856f8824145'264 bytesVirustotal results 58/68 (85.29%) 443P
2018-08-15 21:55:44ce663831ab79259af7c255393f74468536'864 bytesVirustotal results 49/69 (71.01%) mel.cloudcontentsmak.com443P
2018-08-15 18:56:1817b8e712173166b613317ce26d0e447e16'386 bytesn/awww.swinder.net443POST
2018-08-15 16:16:419846b2ffc81e0998d4352ed93fb19779102'506 bytesn/a443P
2018-08-15 13:13:307b7a9e60c8eba0791a3997be1b14f90c103'485 bytesn/a443P
2018-08-15 11:13:18e3ba1f3861e846f3ae637bedf9b13fc810'510 bytesn/a443P
2018-08-15 11:12:0847ff4b6d3bfa1d6c9f04c678c04422bc12'765 bytesn/a443P
2018-08-15 07:00:19eba240ae2736625669b1106c25d58f86573'176 bytesn/awww.solidclient.win443POST
2018-08-15 06:54:1381ea714ca1f75bfe23dcea88c8bf342d113'537 bytesn/a443P
2018-08-15 06:53:303c40dbc8aa986b57b9d424e61fc8bb1c102'440 bytesn/a443P
2018-08-15 06:09:506c2df59a8971275926ea2577ae1b79dd11'312 bytesVirustotal results 0/68 (0.00%) nicru.supermicrotransapi.ru443POST
2018-08-15 06:02:400c4e62265ddfde5d1fa1c45fd0683dbb507'568 bytesn/a443P
2018-08-15 06:00:580c240e216f0971670cdc9d41655fde9e280'848 bytesn/a443P
2018-08-15 05:06:41082b86891a658a64d1587d22b03a22b6175'104 bytesn/a443P
2018-08-15 04:02:1503ecb95af26572546ce3fdfcb97ca7431'052'814 bytesn/a443P
2018-08-15 02:57:10b2073e06b921aa74e4a757fd98e9c7a399'840 bytesVirustotal results 53/68 (77.94%) nicru.supermicrotransapi.ru443POST
2018-08-15 01:55:52e3e8bbadc0b431f791ca1176822dc903151'552 bytesVirustotal results 43/67 (64.18%) 443P
2018-08-15 00:54:138f9df9e7c745753c55b5f2e5e037e3f31'237'344 bytesVirustotal results 1/68 (1.47%) 443P
2018-08-14 23:51:17c7f690eae563b28d7289ea2a4e518ada153'253 bytesVirustotal results 48/68 (70.59%) 443P
2018-08-14 22:48:5017ae104b48629a45f24c02cc923cba7d101'184 bytesVirustotal results 48/68 (70.59%) 443P
2018-08-14 11:00:2632823f65f287fe49286e8abfb4a8b47c111'415 bytesn/a443P
2018-08-14 09:48:04f89f6dcf5753378509d854a29c7eb3cb367'524 bytesn/a443P
2018-08-14 09:46:45f28f708ec617e920b8fdffe3a4be2ed837'917 bytesn/a443P
2018-08-14 09:44:58e795643c84b0e61f8df4f097b3788e6b101'300 bytesn/asmart.cloudnetwork.kz443P
2018-08-14 09:42:57db93d0ddb844255f643951faa9731b8f311'296 bytesVirustotal results 61/68 (89.71%) static.apiinformationsec.com443POST

Referencing malware binaries: 100