Malware Signature
The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with Spambot.Kelihos
Database Entry
| Malware: | Spambot.Kelihos |
|---|---|
| First seen: | 2015-07-10 11:53:10 UTC |
| Last seen: | 2024-01-22 23:27:41 UTC |
Malware Samples
The table below documents all malware samples associated with this malware family.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2024-01-22 23:27:41 | 562a59a75106291124d1faa8d50242bd | n/a | Spambot.Kelihos | 64.52.171.220:56003 |
| 2023-08-30 09:09:53 | 5fe739d874ed8bfb3ff23ed8531bf28a |  42 / 66 (63.64%)
| Spambot.Kelihos | 156.236.72.121:443 |
| 2019-02-26 09:52:53 | 4f2607faec3cb30dc8c476c7029f9046 | 21/66 (31.82%)
| Spambot.Kelihos | 3.121.182.157:1604 |
| 2019-02-26 09:52:53 | 4f2607faec3cb30dc8c476c7029f9046 | 21/66 (31.82%)
| Spambot.Kelihos | 3.121.182.157:1604 |
| 2016-08-27 16:10:34 | 7be9383e8157823f6f26d59c8fe9313c | 39/58 (67.24%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-27 16:10:34 | 7be9383e8157823f6f26d59c8fe9313c | 39/58 (67.24%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-26 16:33:39 | e2e1be94fbfa7586db3dd9bfa15dc877 | 40/57 (70.18%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-26 16:33:39 | e2e1be94fbfa7586db3dd9bfa15dc877 | 40/57 (70.18%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-10 16:22:40 | 4e68281eb66af9c433d9a247367e09e7 | 35/55 (63.64%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-10 16:22:40 | 4e68281eb66af9c433d9a247367e09e7 | 35/55 (63.64%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-08 21:30:58 | e8d30411a54b702bb213bb11312ba5bf | 44/55 (80.00%)
| Spambot.Kelihos | 62.22.91.92:443 |
| 2016-08-08 21:30:58 | e8d30411a54b702bb213bb11312ba5bf | 44/55 (80.00%)
| Spambot.Kelihos | 62.22.91.92:443 |
| 2016-08-04 22:18:02 | cdcff0e4486946b36a07f023cbd11241 | n/a | Spambot.Kelihos | 204.95.99.204:443 |
| 2016-08-04 22:18:02 | cdcff0e4486946b36a07f023cbd11241 | n/a | Spambot.Kelihos | 204.95.99.204:443 |
| 2016-08-04 20:55:30 | 6d3073cf7ef553a9a69016dff8c11ba7 | 25/55 (45.45%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-04 20:55:30 | 6d3073cf7ef553a9a69016dff8c11ba7 | 25/55 (45.45%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-04 09:41:42 | 071a1a716d0fb8b42cfcf56fdae94bcc | 21/54 (38.89%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-04 09:41:42 | 071a1a716d0fb8b42cfcf56fdae94bcc | 21/54 (38.89%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-02 16:34:22 | 35f1e48875870aab36581bf9b52ff070 | 31/55 (56.36%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-02 16:34:22 | 35f1e48875870aab36581bf9b52ff070 | 31/55 (56.36%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-02 15:05:45 | 7e285ca2395f61dc82d20c344a71c461 | 35/64 (54.69%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-02 15:05:45 | 7e285ca2395f61dc82d20c344a71c461 | 35/64 (54.69%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-01 10:27:59 | 510d65ec726ee10d171994b18e68be4f | 37/55 (67.27%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-01 10:27:59 | 510d65ec726ee10d171994b18e68be4f | 37/55 (67.27%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-01 10:27:09 | 84cb4dc8670979e298ef050273a52c50 | 3/55 (5.45%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-01 10:27:09 | 84cb4dc8670979e298ef050273a52c50 | 3/55 (5.45%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-01 06:37:36 | ca12b988b931a09b04735399b85bcaca | 1/55 (1.82%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-08-01 06:37:36 | ca12b988b931a09b04735399b85bcaca | 1/55 (1.82%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-27 19:52:44 | c213433991fe828b64fa9a2995d3e995 | 20/55 (36.36%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-27 19:52:44 | c213433991fe828b64fa9a2995d3e995 | 20/55 (36.36%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-26 17:16:16 | 83ba944c9c8fce91daa68d1b2cc3cba6 | 14/55 (25.45%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-26 17:16:16 | 83ba944c9c8fce91daa68d1b2cc3cba6 | 14/55 (25.45%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-25 13:38:29 | 215436ebe6d7ca58cf3e15fc1cb7b501 | 13/54 (24.07%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-25 13:38:29 | 215436ebe6d7ca58cf3e15fc1cb7b501 | 13/54 (24.07%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-24 11:15:43 | dc0bd2cbe69e010d0a4d5ebdff9f8dc1 | 24/53 (45.28%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-24 11:15:43 | dc0bd2cbe69e010d0a4d5ebdff9f8dc1 | 24/53 (45.28%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-24 09:35:49 | f4d7ecff220b271523ae7b2981c02dfc | 36/66 (54.55%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-24 09:35:49 | f4d7ecff220b271523ae7b2981c02dfc | 36/66 (54.55%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-23 06:57:05 | 556b562da055cbbae2a76fb3643afe1b | 8/55 (14.55%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-23 06:57:05 | 556b562da055cbbae2a76fb3643afe1b | 8/55 (14.55%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-22 17:27:30 | f03358283de74afb4c123c350c78e88b | 36/69 (52.17%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-22 17:27:30 | f03358283de74afb4c123c350c78e88b | 36/69 (52.17%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-22 05:03:28 | 2ee9b66854485a6df647c444dbb11d73 | 1/55 (1.82%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-22 05:03:28 | 2ee9b66854485a6df647c444dbb11d73 | 1/55 (1.82%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-21 11:22:23 | 09a4e85b60d9be56cfe4dcd940158f71 | 34/54 (62.96%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-21 11:22:23 | 09a4e85b60d9be56cfe4dcd940158f71 | 34/54 (62.96%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-21 08:39:44 | e4826533a45aa9b896c5a5c14bacc779 | 33/54 (61.11%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2016-07-21 08:39:44 | e4826533a45aa9b896c5a5c14bacc779 | 33/54 (61.11%)
| Spambot.Kelihos | 23.234.26.210:5658 |
| 2015-07-10 11:53:10 | 29e93f6d8c88ff8175a71d738e3231b7 | 8/56 (14.29%)
| Spambot.Kelihos | 78.47.143.212:443 |
| 2015-07-10 11:53:10 | 29e93f6d8c88ff8175a71d738e3231b7 | 8/56 (14.29%)
| Spambot.Kelihos | 78.47.143.212:443 |