Browse Botnet C&Cs

You are currently viewing the database entry for the D botnet command&control server (C&C) 79.143.191.147. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:79.143.191.147
Hostname:www.gsmforum.gr
Status:Offline
Spamhaus SBL:Not listed
Malware:
AS number:AS51167
AS name:CONTABO, DE
Country:- DE
First seen:2015-06-07 15:39:56 UTC
Last seen:2016-10-26 00:14:32 UTC

Malware Samples


The table below documents all malware samples associated with this D botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2015-07-12 16:57:16c35724366b56798cb9d084d8c3a4fc56n/a79.143.191.1476443Dridex
2015-07-11 23:55:10db25a869ba7a14806cb917625f46be07Virustotal results 0/55 (0.00%) 79.143.191.1476443Dridex
2015-07-11 18:38:15587803ef6da656ee38ab93a0ea091babVirustotal results 3/56 (5.36%) 79.143.191.1476443Dridex
2015-07-11 14:22:521f23f467f12ca8f523e76d6953a0148bVirustotal results 4/55 (7.27%) 79.143.191.1476443Dridex
2015-07-10 18:13:19a3144ab525c8976947a941bcce7945dbVirustotal results 2/56 (3.57%) 79.143.191.1476443
2015-06-21 05:15:047ac7416fcab7745f9000ea3e281c8318Virustotal results 31/57 (54.39%) 79.143.191.1476443Dridex
2015-06-10 00:41:145481bba9ec88a756a5a1a36390038049Virustotal results 3/57 (5.26%) 79.143.191.1476443Dridex
2015-06-09 12:21:35eb59abb01afec200e01f705646f1dbccVirustotal results 3/57 (5.26%) 79.143.191.1476443Dridex
2015-06-09 00:15:475c27ce841ea8afd218944bc4cac64c9fVirustotal results 7/57 (12.28%) 79.143.191.1476443Dridex
2015-06-08 13:44:22ab619931ebf56ee0137548f18209f38bVirustotal results 8/57 (14.04%) 79.143.191.1476443Dridex
2015-06-08 13:42:4253b47c9eb1750c4ee7c4cd0f83a56f30Virustotal results 8/57 (14.04%) 79.143.191.1476443Dridex
2015-06-07 15:39:5695d21fe72ebb34d8e46ecc0e7dc5b38bVirustotal results 6/57 (10.53%) 79.143.191.1476443Dridex

# of malware samples: 12