MalwareApr 14, 2026
@sicehice #AsyncRAT š” AsyncRAT botnet C2s: 81.163.111.127:9001 š·šŗ 91.242.179.62:8808 š·šŗ 91....
AsyncRAT botnet C2 servers identified across Russian IP infrastructure.
Summary
Security researcher @sicehice has identified four command-and-control (C2) servers associated with the AsyncRAT botnet, all hosted on Russian IP addresses. The IOCs include IP:port combinations across the 81.163.111.127 and 91.242.179.x ranges. This disclosure provides actionable intelligence for detection and blocking of AsyncRAT infrastructure.
Indicators of Compromise
- ip ā 81.163.111.127
- ip ā 91.242.179.62
- ip ā 91.242.179.84
- malware ā AsyncRAT