Browse Botnet C&Cs

You are currently viewing the database entry for the D botnet command&control server (C&C) 149.132.68.139. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:149.132.68.139
Hostname:cipolla02.btbs.unimib.it
Status:Offline
Spamhaus SBL:SBL256490
Malware:
AS number:AS137
AS name:ASGARR Consortium GARR, IT
Country:- IT
First seen:2015-04-27 07:03:20 UTC
Last seen:2015-05-21 15:35:54 UTC

Malware Samples


The table below documents all malware samples associated with this D botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2015-05-21 15:35:54b01a47eb16d6943b8e6e801408e7ed95Virustotal results 4/57 (7.02%) 149.132.68.139443Dridex
2015-05-18 12:59:14de04091236aab31cb16c588f47ca9948Virustotal results 9/56 (16.07%) 149.132.68.139443Dridex
2015-05-16 19:13:36e20b153b8c4f0e24c7074e11eb21cd66Virustotal results 31/56 (55.36%) 149.132.68.139443Dridex
2015-05-14 14:35:5911f6edd18db9b298705de7f981cac6d4Virustotal results 35/56 (62.50%) 149.132.68.139443Dridex
2015-04-28 15:38:1667a5facf854a72382a8d8e308027baa3Virustotal results 4/56 (7.14%) 149.132.68.139443Dridex
2015-04-27 10:47:11739cdf583b9fdf1289c6766b8f12d5a2Virustotal results 6/57 (10.53%) 149.132.68.139443Dridex
2015-04-27 07:03:20e52a8d15ee08d7f8b4efca1b16daaefbVirustotal results 29/57 (50.88%) 149.132.68.139443Dridex

# of malware samples: 7