Feodo Tracker :: 42.117.2.85

C&C Information

Feodo C&C:42.117.2.85
Version:D
Host status:offline
Spamhaus SBL:SBL276892
AS number:AS18403
AS name:FPT-AS-AP The Corporation for Financing & Promoting Technology, VN
Country:- VN
Firstseen (UTC):2015-11-20 10:54:49
Lastseen (UTC):2016-01-11 10:43:52

Referencing malware binaries

Latest 100 malware binaries referencing this Feodo C&C:

Timestamp (UTC)MD5 hashFilesizeVTHostPortSSL certificate (SHA1 Fingerprint)
2015-11-20 10:54:49d410a45dc4710ea0d383dee81fbbcb6f315'904 bytesVirustotal results 4/52 (7.69%) 42.117.2.85443609d6866ef001b9411fe9a95e472957fef282e38
2015-11-20 10:54:49d410a45dc4710ea0d383dee81fbbcb6f315'904 bytesVirustotal results 4/52 (7.69%) 42.117.2.8544389d680a4965fd65aec354ee76a8ccbcd377629ed
2015-11-20 13:32:531cc15b42130a5ec4c3a5d399ea6233dc160'768 bytesVirustotal results 4/53 (7.55%) 42.117.2.85443609d6866ef001b9411fe9a95e472957fef282e38
2015-11-20 13:32:531cc15b42130a5ec4c3a5d399ea6233dc160'768 bytesVirustotal results 4/53 (7.55%) 42.117.2.8544389d680a4965fd65aec354ee76a8ccbcd377629ed
2015-11-20 13:32:531cc15b42130a5ec4c3a5d399ea6233dc160'768 bytesVirustotal results 4/53 (7.55%) 42.117.2.85443da3f731e1f54cba11c01dd4eb3c48efe354c6ff9
2015-11-23 13:28:517e6cfd542440e913e661a94f6a711ab4339'456 bytesVirustotal results 3/55 (5.45%) 42.117.2.85443609d6866ef001b9411fe9a95e472957fef282e38
2015-11-23 13:28:517e6cfd542440e913e661a94f6a711ab4339'456 bytesVirustotal results 3/55 (5.45%) 42.117.2.854437dea4f9356c8470ff95cc850af22090474f9deeb
2015-11-30 16:30:32f41c59b82e16c18b57bdd47844e53414192'512 bytesVirustotal results 39/55 (70.91%) 42.117.2.854432409e48693a4ca3af70dd944d8773327e6a8516c
2015-11-30 16:30:32f41c59b82e16c18b57bdd47844e53414192'512 bytesVirustotal results 39/55 (70.91%) 42.117.2.8544342b2afaceb4d270a194b83978020fd4711e928e2
2015-11-30 16:30:32f41c59b82e16c18b57bdd47844e53414192'512 bytesVirustotal results 39/55 (70.91%) 42.117.2.85443b22eb2d8681247bcfc5153bf3a7bdaf511e55af5
2015-12-04 14:50:22048b5140b6fe2a84d69859667919d860205'314 bytesVirustotal results 4/52 (7.69%) 42.117.2.85443a341d99ac79f2cb590e7532b13ff64b29b7c80c3
2015-12-04 14:50:22048b5140b6fe2a84d69859667919d860205'314 bytesVirustotal results 4/52 (7.69%) 42.117.2.85443b22eb2d8681247bcfc5153bf3a7bdaf511e55af5
2015-12-07 11:13:4944cbd39c6581342252ce1cdd238b2975224'256 bytesVirustotal results 38/56 (67.86%) 42.117.2.85443a341d99ac79f2cb590e7532b13ff64b29b7c80c3
2015-12-07 11:13:4944cbd39c6581342252ce1cdd238b2975224'256 bytesVirustotal results 38/56 (67.86%) 42.117.2.85443b22eb2d8681247bcfc5153bf3a7bdaf511e55af5
2015-12-07 15:16:349b203d747a992990c75d610ae53adc6b200'704 bytesVirustotal results 1/55 (1.82%) 42.117.2.85443a341d99ac79f2cb590e7532b13ff64b29b7c80c3
2015-12-07 15:16:349b203d747a992990c75d610ae53adc6b200'704 bytesVirustotal results 1/55 (1.82%) 42.117.2.85443b22eb2d8681247bcfc5153bf3a7bdaf511e55af5
2015-12-08 05:51:4168f89bf47f74e7804815aa800d4a385a241'798 bytesVirustotal results 27/54 (50.00%) 42.117.2.854436a94edcb9f47ee5aee6b28dda59861203f602190
2015-12-08 05:51:4168f89bf47f74e7804815aa800d4a385a241'798 bytesVirustotal results 27/54 (50.00%) 42.117.2.85443b22eb2d8681247bcfc5153bf3a7bdaf511e55af5
2015-12-10 15:21:30452558c7847abb367ad7e16792d33858237'568 bytesVirustotal results 3/55 (5.45%) 42.117.2.85443b0f3122c1ab28fcd3fa56e7d88737bc05e095854
2015-12-11 06:24:05f064e22e6b1ef8eded3a0cf7a8465b0c196'608 bytesVirustotal results 26/55 (47.27%) 42.117.2.854437ef9fa16b91542f409aa62db1b932ec1325855b1
2015-12-11 06:24:05f064e22e6b1ef8eded3a0cf7a8465b0c196'608 bytesVirustotal results 26/55 (47.27%) 42.117.2.85443c3119e049e972072675bcc408c496633a60f305d
2015-12-14 12:57:1665cdbff6c454c4aa0225ccb4e632bde6196'608 bytesVirustotal results 2/55 (3.64%) 42.117.2.85443431cc78f86bcca3da5742814c512a0ca0eed6f3c
2016-01-11 10:43:523d59b913f823314ca85839b60a9d563a156'160 bytesVirustotal results 2/54 (3.70%) 42.117.2.854431c8357ec564ea1f638165801224701f565f1d3d8
2016-01-11 10:43:523d59b913f823314ca85839b60a9d563a156'160 bytesVirustotal results 2/54 (3.70%) 42.117.2.854436fedd77dddf2dc6b636a6d3063a44c6d8d43e124

Referencing malware binaries: 24