Browse Botnet C&Cs

You are currently viewing the database entry for the D botnet command&control server (C&C) 194.28.87.125. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:194.28.87.125
Hostname:194.28.87.125.hostpro.com.ua
Status:Offline
Spamhaus SBL:SBL257891
Malware:
AS number:AS196645
AS name:HOSTPRO-AS, UA
Country:- UA
First seen:2015-05-01 13:43:58 UTC
Last seen:2015-08-31 11:52:06 UTC

Malware Samples


The table below documents all malware samples associated with this D botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2015-05-28 07:42:17f34d86b26d7350e5fb9af3b16c2f398eVirustotal results 42/57 (73.68%) 194.28.87.1254443Dridex
2015-05-28 06:45:2481b2874e4f203da4f95c35fb99fc86cdVirustotal results 38/57 (66.67%) 194.28.87.1254443Dridex
2015-05-27 17:44:5122525a6ec8492984cc0fdba70ef559d0Virustotal results 22/56 (39.29%) 194.28.87.1254443Dridex
2015-05-27 01:19:5771953b6772af656708209ed965d8a4f9Virustotal results 38/57 (66.67%) 194.28.87.1254443
2015-05-15 11:19:512a6db368acfeafba1692029cfacebe57Virustotal results 36/55 (65.45%) 194.28.87.1254443Dridex
2015-05-11 00:08:25de6e24521f78c6f68444ea95740d2f8aVirustotal results 5/55 (9.09%) 194.28.87.1254443
2015-05-07 08:25:26d73ccb7a1e612681b68447d4ec5e3fbeVirustotal results 3/57 (5.26%) 194.28.87.1254443Dridex
2015-05-01 13:43:584abde4b3766877317770c1612d147dd9Virustotal results 5/55 (9.09%) 194.28.87.1254443

# of malware samples: 8