Lmst
Login

#C2

SarlackLabSarlackLab@ioc.exchange
2026-01-26

#njrat #C2 server
193.161.193[.]99:52459
dededesc-52459[.]portmap[.]host
confirmed 2026-01-26

SarlackLabSarlackLab@ioc.exchange
2026-01-26

live #darkcomet #C2 server
212.64.210[.]140:4930
x021d3eon[.]localto[.]net
confirmed 2026-01-26

SarlackLabSarlackLab@ioc.exchange
2026-01-25

live #redline #C2 server
185.241.208[.]150:1912

confirmed 2026-01-25

SarlackLabSarlackLab@ioc.exchange
2026-01-25

live #redline #C2 server
196.251.107[.]104:1912

confirmed 2026-01-25

SarlackLabSarlackLab@ioc.exchange
2026-01-25

live #nanocore #C2 server
107.152.32[.]98:1911
bnli8khzo[.]localto[.]net
confirmed 2026-01-25

SarlackLabSarlackLab@ioc.exchange
2026-01-25

live #nanocore #C2 server
192.109.200[.]95:54984

confirmed 2026-01-25

SarlackLabSarlackLab@ioc.exchange
2026-01-25

#lokibot #C2 server

jfnutts[.]com
confirmed 2026-01-25

CyberVeille.chcyberveille@mastobot.ping.moi
2026-01-19

📢 Cartographie de 18 000+ serveurs C2 malveillants au sein des FAI et clouds chinois
📝 Selon Hunt.io, une analyse « host-centric » sur trois mois a mis au jour plus de 18 000 serveurs de commande et contrôle (C2) actifs répartis sur 48 fourni...
📖 cyberveille : cyberveille.ch/posts/2026-01-1
🌐 source : hunt.io/blog/china-hosting-mal
#C2 #Chine #Cyberveille

CyberVeille.chcyberveille@mastobot.ping.moi
2026-01-18

📢 Lumen/Black Lotus Labs perturbe les botnets DDoS Aisuru et Kimwolf en neutralisant 550+ serveurs C2
📝 Selon Black Lotus Labs (Lumen Technologies), l’opérateur a observé fin 2025 une croissanc...
📖 cyberveille : cyberveille.ch/posts/2026-01-1
🌐 source : linkedin.com/pulse/keeping-kim
#Aisuru #C2 #Cyberveille

CyberVeille.chcyberveille@mastobot.ping.moi
2026-01-16

📢 Lumma Stealer multiplie les tâches planifiées et accroît le trafic C2 vers fileless-market[.]cc
📝 Source: billet signé par Brad Duncan (publié le 14 janvier 2026).
📖 cyberveille : cyberveille.ch/posts/2026-01-1
🌐 source : isc.sans.edu/diary/32628
#C2 #IOC #Cyberveille

SarlackLabSarlackLab@ioc.exchange
2026-01-13

live #redline #C2 server
77.83.39[.]185:1912

confirmed 2026-01-12

SarlackLabSarlackLab@ioc.exchange
2026-01-13

live #nanocore #C2 server
82.29.96[.]59:14035
homevpn[.]anondns[.]net
confirmed 2026-01-12

SarlackLabSarlackLab@ioc.exchange
2026-01-12

#C2 IPv4 map, 2025-12-30 to 2026-01-12
abjuri5t.github.io/SarlackLab/

156.234.96[.]0/20
103.48.132[.]0/22
156.234.152[.]0/23
156.234.208[.]0/23
156.234.145[.]0/24
103.41.6[.]0/23
148.178.64[.]0/19
156.234.216[.]0/21
148.178.32[.]0/19
138.226.236[.]0/23

2026-01-12
SarlackLabSarlackLab@ioc.exchange
2026-01-10

live #nanocore #C2 server
18.188.140[.]51:943

confirmed 2026-01-10

SarlackLabSarlackLab@ioc.exchange
2026-01-10

#njrat #C2 server
104.250.167[.]52:5056
nj5056ja[.]duckdns[.]org
confirmed 2026-01-10

SarlackLabSarlackLab@ioc.exchange
2026-01-09

#njrat #C2 server
103.204.193[.]139:6522

confirmed 2026-01-09

SarlackLabSarlackLab@ioc.exchange
2026-01-09

live #darkcomet #C2 server
212.64.215[.]198:2595

confirmed 2026-01-09

SarlackLabSarlackLab@ioc.exchange
2026-01-08

live #darkcomet #C2 server
212.64.215[.]198:6748

confirmed 2026-01-08

SarlackLabSarlackLab@ioc.exchange
2026-01-07

#njrat #C2 server
193.161.193[.]99:59529
bielzingl-59529[.]portmap[.]host
confirmed 2026-01-07

SarlackLabSarlackLab@ioc.exchange
2026-01-07

live #darkcomet #C2 server
212.64.215[.]198:1829

confirmed 2026-01-07

Client Info

Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst