Technical Information
Malicious functions:
Removes itself
Modifies firewall settings:
- iptables -I INPUT -p udp -m udp --dport 15249 -j ACCEPT
Network activity:
Awaits incoming connections on ports:
- 127.0.0.1:30498
- 0.0.0.0:15249
Establishes connection:
- 8.#.8.8:53
- [:##]:15249
- 127.0.0.1:15249
HTTP GET requests:
- http://###.#20.39.185/
Sends data to the following servers:
- 14#.###.237.41:61693
- 80.##.207.85:8080
- 23#.###.214.193:8080
- 19#.##.186.187:8080
- 22#.##7.240.0:8080
- 23#.##.201.160:8080
- 25#.##4.81.162:8080
- 15#.#.251.115:8080
- 20#.##.209.187:8080
- 20#.##.206.237:8080
- 11#.##.224.209:8080
- 50.###.161.40:8080
- 20#.##.201.141:8080
- 15#.##5.146.5:8080
- 16#.##.115.151:8080
- 10#.##.89.216:8080
- 15#.##6.163.65:8080
- 22#.##.32.236:8080
- 15#.###.214.122:8080
- 24#.###.160.155:8080
- 10#.##.75.142:8080
- 12#.##8.56.190:8080
- 12#.##.21.27:8080
- 12#.##.254.212:8080
- 12#.##4.216.33:8080
- 57.###.146.220:8080
- 22#.##.152.104:8080
- 10#.###.178.113:8080
- 22#.##.7.22:8080
- 23#.###.236.235:8080
- 2.###.217.140:8080
- 14#.###.254.244:8080
- 16#.###.167.103:8080
- 17.###.219.222:8080
- 14#.##.160.151:8080
- 50.###.132.66:8080
- 67.###.62.28:8080
- 51.###.243.144:8080
- 15#.##1.93.122:8080
- 16#.##.117.18:8080
- 44.###.219.68:8080
- 20#.##2.88.161:8080
- 67.###.181.92:8080
- 13#.###.139.156:8080
- 16#.##1.42.232:8080
- 23#.##6.73.224:8080
- 18#.##4.162.92:8080
- 25#.##.114.40:8080
- 13#.##.103.114:8080
- 10#.##9.217.89:8080
- 9.##.#33.239:8080
- 16#.##6.132.62:8080
- 20#.##2.205.3:8080
- 83.###.77.196:8080
- 12#.###.103.114:8080
- 22#.##.148.10:8080
- 15#.##.37.217:8080
- 13#.##2.93.220:8080
- 20#.##8.90.7:8080
- 16#.###.161.236:8080
- 23#.##.48.209:8080
- 20#.##.114.175:8080
- 19#.##.199.249:8080
- 10#.##4.50.179:8080
- 17#.##.179.163:8080
- 38.###.202.182:8080
- 18#.##4.181.56:8080
- 34.###.43.172:8080
- 27.##.129.127:8080
- 14#.###.159.219:8080
- 16#.##1.92.87:8080
- 10#.##5.89.182:8080
- 44.##.150.227:8080
- 14#.##.172.41:8080
- 58.#.#8.183:8080
- 23#.###.164.181:8080
- 17#.###.166.211:8080
- 71.###.166.219:8080
- 23#.##8.214.33:8080
- 11#.##.107.34:8080
- 13#.##5.8.25:8080
- 5.###.224.87:8080
- 39.###.95.233:8080
- 25#.##8.26.150:8080
- 16#.##.53.185:8080
- 11#.##0.40.101:8080
- 44.###.204.36:8080
- 23.##.56.234:8080
- 10#.##7.101.24:8080
- 16#.###.208.117:8080
- 41.##.82.14:8080
- 12#.##.170.127:8080
- 46.###.212.159:8080
- 48.##.57.183:8080
- 13#.##5.212.76:8080
- 20#.##.15.6:8080
- 96.##.235.86:8080
- 24.###.68.128:8080
- 25#.##3.58.123:8080
- 42.###.168.110:8080
- 95.###.75.156:8080
- 82.##.251.167:8080
- 15#.##.82.192:8080
- 16#.###.171.185:8080
- 45.###.52.164:8080
- 24#.###.100.248:8080
- 38.##.198.154:8080
- 11#.##.38.88:8080
- 10#.#.147.61:8080
- 23#.##.192.120:8080
- 12#.###.160.240:8080
- 20#.#.91.172:8080
- 47.###.49.231:8080
- 13#.##.111.111:8080
- 17#.##.122.38:8080
- 16#.##0.88.155:8080
- 23#.##.177.227:8080
- 12#.###.254.192:8080
- 51.###.235.247:8080
- 23#.###.232.134:8080
- 16#.##5.85.143:8080
- 61.##.100.239:8080
- 17#.##.211.15:8080
- 67.##.65.162:8080
- 10#.##6.51.139:8080
- 17#.##5.122.28:8080
- 57.##.216.10:8080
- 11#.##.209.186:8080
- 23#.##8.66.28:8080
- 21#.##.115.164:8080
- 17#.###.232.158:8080
- 16#.##6.245.35:8080
- 75.##.173.73:8080
- 84.##.39.190:8080
- 22#.##.218.200:8080
- 24#.##4.220.6:8080
- 51.##.93.25:8080
- 24#.###.115.203:8080
- 18#.##.140.106:8080
- 14#.##.73.88:8080
- 24#.##8.90.205:8080
- 23#.###.150.139:8080
- 41.##.218.74:8080
- 72.#.#6.189:8080
- 18#.##4.140.8:8080
- 24#.###.247.151:8080
- 22#.##1.33.200:8080
- 44.###.48.78:8080
- 19.##.11.71:8080
- 11#.##.72.218:8080
- 23#.###.127.115:8080
- 78.###.255.105:8080
- 40.###.181.5:8080
- 10#.##1.17.157:8080
- 73.###.88.43:8080
- 22#.###.153.100:8080
- 20#.##.247.112:8080
- 24#.###.134.161:8080
- 5.###.123.226:8080
- 13#.###.222.198:8080
- 19#.##8.200.0:8080
- <LOCAL_GATE>:8080
- 11#.###.173.67:24825
- 10#.#1.38.84:80
- 73.##.155.107:80
- 11#.##1.107.37:80
- 1.##.224.197:80
- 93.###.35.236:80
- 21#.##4.16.203:80
- 21#.##.185.74:80
- 90.###.166.177:80
- 83.##.28.124:80
- 17#.##3.149.78:80
- 17#.##0.168.117:80
- 20#.##.139.165:80
- 12#.#62.2.51:80
- 12#.#32.14.8:80
- 76.###.213.96:80
- 22#.##.142.146:80
- 25#.##6.122.15:80
- 12.#.227.226:80
- 57.###.156.185:80
- 68.##.0.1:80
- 86.###.19.145:80
- 13#.##5.41.133:80
- 62.##.140.31:80
- 18#.##.198.64:80
- 37.##.59.186:80
- 21#.##8.234.40:80
- 15#.#.216.195:80
- 11#.##6.12.37:80
- 19#.##7.200.137:80
- 25#.##.132.232:80
- 45.##1.9.209:80
- 12#.##0.255.120:80
- 22#.##.142.183:80
- 11#.##.152.156:80
- 12#.##1.60.151:80
- 11#.##5.116.210:80
- 15#.##9.18.42:80
- 11#.##.46.129:80
- 19#.##0.71.198:80
- 24#.#.166.239:80
- 21#.#6.55.88:80
- 90.#.8.75:80
- 12#.##6.224.108:80
- 99.###.174.130:80
- 13#.##.155.225:80
- 14#.##7.194.36:80
- 77.###.163.158:80
- 23#.#.147.15:80
- 71.##.240.83:80
- 13#.##6.85.15:80
- 23#.##.108.138:80
- 17.##6.26.3:80
- 20#.##.255.79:80
- 59.###.146.120:80
- 23.###.218.200:80
- 13.###.149.117:80
- 20#.##5.231.58:80
- 15#.##.76.108:80
- 22#.##7.140.158:80
- 86.##4.50.52:80
- 16#.##.129.246:80
- 13#.##8.157.84:80
- 27.###.146.254:80
- 20#.##4.206.198:80
- 16#.#9.51.36:80
- 14#.##7.9.139:80
- 94.##.68.162:80
- 15#.##3.109.200:80
- 36.###.117.115:80
- 24#.##9.73.166:80
- 16#.##6.126.147:80
- 22#.##.204.167:80
- 24#.##.50.221:80
- 22#.##6.126.77:80
- 37.##8.3.207:80
- 16#.##.96.182:80
- 23#.##6.172.169:80
- 13#.##.43.173:80
- 97.##.138.243:80
- 11#.#5.84.11:80
- 13#.##1.86.79:80
- 18#.##8.45.45:80
- 12#.##9.4.139:80
- 23#.#23.0.11:80
- 81.###.106.106:80
- 14#.##.67.230:80
- 69.###.174.221:80
- 14#.#.170.67:80
- 24#.##2.143.82:80
- 27.###.202.107:80
- 12#.##2.175.80:80
- 90.###.226.233:80
- 98.#.230.242:80
- 19#.##9.209.54:80
- 13#.##2.87.13:80
- 24#.#0.29.16:80
- 14#.##4.162.108:80
- 53.##.220.108:80
- 25#.##.195.86:80
- 11#.##4.207.191:80
- 20#.#0.24.40:80
- 79.##.215.41:80
- 25#.##0.209.225:80
- 24#.##.81.225:80
- 22#.##9.19.44:80
- 11#.##.234.74:80
- 89.###.90.117:80
- 46.###.113.49:80
- 92.##.34.225:80
- 74.###.176.165:80
- 78.###.254.145:80
- 10#.##.192.123:80
- 68.##4.0.14:80
- 10#.##6.102.53:80
- 18#.##7.103.228:80
- 15#.##.248.149:80
- 24#.##.93.194:80
- 17#.##6.250.48:80
- 14#.##2.112.142:80
- 84.###.235.188:80
- 60.##5.44.4:80
- 22#.#.191.251:80
- 13#.#.143.70:80
- 5.###.65.214:80
- 58.###.91.143:80
- 12#.##.238.92:80
- 11#.##2.228.78:80
- 24#.##.187.64:80
- 18#.##.237.144:80
- 24#.##9.14.115:80
- 24#.##3.205.124:80
- 31.##.79.208:80
- 18#.##.104.98:80
- 19#.##9.51.233:80
- 13#.##5.113.83:80
- 83.###.241.11:80
- 23#.##4.49.28:80
- 23#.##.143.52:80
- 17.##.219.32:80
- 13#.##.132.30:80
- 17#.##.39.234:80
- 48.###.188.37:80
- 25#.##3.203.16:80
- 22#.##2.227.95:80
- 8.###.211.91:80
- 98.##.53.49:80
- 16#.##3.12.181:80
- 73.##.188.134:80
- 42.###.92.122:80
- 19#.#.54.18:80
- 15#.##.110.236:80
- 22#.##1.133.105:80
- 76.##.46.71:80
- 18#.##6.186.247:80
- 35.##.248.20:80
- 4.##.232.65:80
- 63.###.115.209:80
- 10#.##3.242.144:80
- 86.###.124.189:80
- 13#.##0.24.34:80
- 19#.##8.200.2:80
- 19#.##8.200.3:80