Malware Signature

The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with Retefe

Database Entry

Malware:Retefe -
First seen:2015-06-29 02:53:51 UTC
Last seen:2015-11-20 06:44:25 UTC

Malware Samples

The table below documents all malware samples associated with this malware family.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-11-20 06:44:255060a817194550c66cf789551bf4d06fVirustotal results 29/55 (52.73%) Retefe185.14.30.53:443
2015-11-20 06:44:255060a817194550c66cf789551bf4d06fVirustotal results 29/55 (52.73%) Retefe185.14.30.53:443
2015-11-19 17:19:47b8bb0ef4fa3c36021aa4b4949a4bc2c9Virustotal results 45/57 (78.95%) Retefe185.14.30.53:443
2015-11-19 17:19:47b8bb0ef4fa3c36021aa4b4949a4bc2c9Virustotal results 45/57 (78.95%) Retefe185.14.30.53:443
2015-11-19 15:34:211ebd1f8695d6ff3943b237cf0b6b37e7Virustotal results 44/57 (77.19%) Retefe185.14.29.186:443
2015-11-19 15:34:211ebd1f8695d6ff3943b237cf0b6b37e7Virustotal results 44/57 (77.19%) Retefe185.14.29.186:443
2015-11-19 15:14:22120cd0bd4bee399d0247e2978f2ef459n/aRetefe185.82.216.109:443
2015-11-19 15:14:22120cd0bd4bee399d0247e2978f2ef459n/aRetefe185.82.216.109:443
2015-11-19 14:49:268ff9899328ee1fbaba70825b9370d4b9Virustotal results 45/57 (78.95%) Retefe109.234.34.133:443
2015-11-19 14:49:268ff9899328ee1fbaba70825b9370d4b9Virustotal results 45/57 (78.95%) Retefe109.234.34.133:443
2015-11-13 22:34:22e81bff483e4c1132dd2ab2087d82c5b7Virustotal results 37/55 (67.27%) Retefe185.14.30.243:443
2015-11-13 22:34:22e81bff483e4c1132dd2ab2087d82c5b7Virustotal results 37/55 (67.27%) Retefe185.14.30.243:443
2015-11-08 02:02:275889f6fff880bd340f4b0b0944e3aecbVirustotal results 24/56 (42.86%) Retefe185.14.30.243:443
2015-11-08 02:02:275889f6fff880bd340f4b0b0944e3aecbVirustotal results 24/56 (42.86%) Retefe185.14.30.243:443
2015-11-07 17:41:53314e176da23bf18751e8c181fa66331dVirustotal results 33/56 (58.93%) Retefe185.14.30.243:443
2015-11-07 17:41:53314e176da23bf18751e8c181fa66331dVirustotal results 33/56 (58.93%) Retefe185.14.30.243:443
2015-11-07 17:17:2020b1f9c397dd5ad49b503dda5d0c8dbbVirustotal results 41/54 (75.93%) Retefe185.14.30.243:443
2015-11-07 17:17:2020b1f9c397dd5ad49b503dda5d0c8dbbVirustotal results 41/54 (75.93%) Retefe185.14.30.243:443
2015-10-19 12:49:351c25fa7c659f4426131b587617f29fb1Virustotal results 42/56 (75.00%) Retefe185.14.29.96:443
2015-10-19 12:49:351c25fa7c659f4426131b587617f29fb1Virustotal results 42/56 (75.00%) Retefe185.14.29.96:443
2015-08-20 19:26:3001d30c424dc07ed7988dcf9da25a8416Virustotal results 37/57 (64.91%) Retefe109.234.34.186:443
2015-08-20 19:26:3001d30c424dc07ed7988dcf9da25a8416Virustotal results 37/57 (64.91%) Retefe109.234.34.186:443
2015-08-08 08:43:120cb143be6f675649630e97b84a3ffff3Virustotal results 20/55 (36.36%) Retefe109.234.34.186:443
2015-08-08 08:43:120cb143be6f675649630e97b84a3ffff3Virustotal results 20/55 (36.36%) Retefe109.234.34.186:443
2015-06-29 02:53:51072af5827f18464b96f391982a1cce7bVirustotal results 8/55 (14.55%) Retefe185.14.29.193:443
2015-06-29 02:53:51072af5827f18464b96f391982a1cce7bVirustotal results 8/55 (14.55%) Retefe185.14.29.193:443