Can Someone explain me this ?

can someone explain me this ?

hi! thank you in advance for your time!
i know but if you scrolled down more you can see this

one of those ip adresses is found in a list wrote in an article here
https://medium.com/walmartglobaltech/state-of-the-rat-part-1-cfec6c967e2f

and towards that ip malware was found by virustotal including the malware "TJprojMain"

Thanks to your analysis and to the people who are helping me digging this out it certainly seems less tragic to me
however at the same time it seems clear to me that there are strange relationships between plutonium and certain ip addresses explicit within plutonium itself.

hope you can clear my mind about this
thanks as always for the detailed and polite answer to my question and doubts!

Resxt thanks for the quick answer!

On virustotal it is explicit that there are calls to ip addresses with which files are transferred (exe, apk, zip, etc)
Among these files are

1. multiple copies of a TJprojMain.exe
2. multiple files with Windows system file names which, however, have internally calls to unknown ip addresses or untrustworthy ddns

can you please explain me also this ?

i am using virus total in graph mode

and i am only taking those three as an example but there is a lot more

https://imgur.com/a/OMSpxQk
i need to be worried ?
there is a lot of malicious activity here!