Malware Signature
The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with Terdot
Database Entry
| Malware: | Terdot |
|---|---|
| First seen: | 2016-11-16 00:46:26 UTC |
| Last seen: | 2017-02-16 08:47:19 UTC |
Malware Samples
The table below documents all malware samples associated with this malware family.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2017-02-16 08:47:19 | 26f90c6c1b10ef199642f78b6db9788c |  14/57 (24.56%)
| Terdot | 54.164.51.39:443 |
| 2017-02-16 08:47:19 | 26f90c6c1b10ef199642f78b6db9788c | 14/57 (24.56%)
| Terdot | 54.164.51.39:443 |
| 2017-02-09 20:07:21 | a026f090b8ad721b63c7ef385ccfb2a0 | 22/57 (38.60%)
| Terdot | 52.70.122.231:443 |
| 2017-02-09 20:07:21 | a026f090b8ad721b63c7ef385ccfb2a0 | 22/57 (38.60%)
| Terdot | 52.70.122.231:443 |
| 2016-11-24 00:45:54 | a1fbd71e4216312b4e089455b64b49cf | 13/56 (23.21%)
| Terdot | 104.223.21.3:443 |
| 2016-11-24 00:45:54 | a1fbd71e4216312b4e089455b64b49cf | 13/56 (23.21%)
| Terdot | 146.148.124.166:443 |
| 2016-11-24 00:45:54 | a1fbd71e4216312b4e089455b64b49cf | 13/56 (23.21%)
| Terdot | 146.148.124.166:443 |
| 2016-11-24 00:45:54 | a1fbd71e4216312b4e089455b64b49cf | 13/56 (23.21%)
| Terdot | 104.223.21.3:443 |
| 2016-11-16 00:46:26 | 05973f32b15cb08559d47414a934c528 | 26/57 (45.61%)
| Terdot | 96.9.244.10:443 |
| 2016-11-16 00:46:26 | 05973f32b15cb08559d47414a934c528 | 26/57 (45.61%)
| Terdot | 96.9.244.10:443 |