Browse Botnet C&Cs

You are currently viewing the database entry for the D botnet command&control server (C&C) 81.12.229.190. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:81.12.229.190
Hostname:mail.roseyarns.ro
Status:Offline
Spamhaus SBL:Not listed
Malware:
AS number:AS12302
AS name:VODAFONE_RO Charles de Gaulle nr.15, RO
Country:- RO
First seen:2017-03-22 15:36:29 UTC
Last seen:2017-04-06 18:43:12 UTC

Malware Samples


The table below documents all malware samples associated with this D botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2013-10-24 16:07:0018bc4aaca2c652c255ed3aa3f1023a8cVirustotal results 39/46 (84.78%) 81.12.229.1908043Downloader.Upatre
2013-10-16 01:12:36c51884316174c50a45c56a621051bca5Virustotal results 32/48 (66.67%) 81.12.229.1908043ZeuS
2013-10-09 15:50:41419b8e1c4e7d2af1f2e8c515a540a5a6Virustotal results 5/48 (10.42%) 81.12.229.1908043ZeuS
2013-10-07 15:57:19e1352c31100bdc71992d796ae88a21d4Virustotal results 6/47 (12.77%) 81.12.229.1908043ZeuS
2013-10-07 15:54:09e0f0a3808ec2e4e246f4dd6c26c73589Virustotal results 6/47 (12.77%) 81.12.229.1908043ZeuS
2013-10-07 13:28:439d7d3896313fbe543380770c412eb272Virustotal results 25/47 (53.19%) 81.12.229.1908043ZeuS
2013-10-07 07:29:5566390d88f1b1eee4529a6701f0f41deaVirustotal results 6/48 (12.50%) 81.12.229.1908043ZeuS
2013-10-07 00:58:23a209cb50a237e4edb01f17299d68a50cVirustotal results 31/48 (64.58%) 81.12.229.1908043ZeuS
2013-10-06 22:22:513de72fb6f7d734db4033191138260401Virustotal results 4/48 (8.33%) 81.12.229.1908043ZeuS
2013-10-06 21:45:34352a639e886b274bf752cee099e9f3b2Virustotal results 6/47 (12.77%) 81.12.229.1908043ZeuS
2013-10-02 08:41:40d7db1118d15b2025c31210694b71d771Virustotal results 2/48 (4.17%) 81.12.229.1908043Downloader.Pony

# of malware samples: 11