Malware Domain List

Malware Related => Malicious Domains => Topic started by: sursmurf on September 29, 2009, 08:33:29 pm

Title: MSN spammed trojan
Post by: sursmurf on September 29, 2009, 08:33:29 pm

This link is spammed in MSN Messenger

Code: [Select]

http://lmageshack.org/img/imgrav.jpg   

Any link on lmageshack.org/img/ seems to redirect to the download at rapidshare

Code: [Select]

http://rs571l32.rapidshare.com/files/286612899/pic785.pif
VT 3/41
http://www.virustotal.com/sv/analisis/036e98b9ace080fccfdd396eea7be4cc925e3f75c2bb9a2e326f4d2781c2dac3-1254251704

Title: Re: MSN spammed trojan
Post by: sursmurf on December 15, 2009, 09:01:00 am

Both are spammed as links in MSN Messenger.

Code: [Select]

hXXp://lmageshack.biz/img/imgeq.jpg[VT 5/41]
http://www.virustotal.com/sv/analisis/82fc4858a8c92a502ddd2836b6ce2d4386bef38af975301e89b412b325369fad-1260867077

Code: [Select]

hXXp://myspaceimg.my.ohost.de/photo.php?=yourmail@hotmail.com[VT 9/41]
http://www.virustotal.com/sv/analisis/d94e33b739d99fbbe99364ab6dffc5921efd163dea59fd77835c14028a80b723-1260866809

Title: Re: MSN spammed trojan
Post by: sursmurf on December 17, 2009, 09:38:55 am

Another one:

Code: [Select]

hXXp://tuephoto.tu.ohost.de/getimage.php?=youremail@hotmail.com
[VT 9/41]
http://www.virustotal.com/sv/analisis/831b073140b27c862a4dfd5a9bb3af9c44b1b9ae7fb80ddb56f61cf77eb7c211-1261041870

Title: Re: MSN spammed trojan
Post by: sursmurf on December 26, 2009, 08:25:24 pm

They are back on a new domain:

Code: [Select]

http://lmagehost.net/img/imgit.jpg[VT 6/41]
http://www.virustotal.com/analisis/dd6838048204647f02f503465d16da969f6a8b8aa9cb761bfddcc25cdda5b44a-1261858927

Title: Re: MSN spammed trojan
Post by: sursmurf on January 05, 2010, 09:50:39 am

Another one:

Code: [Select]

http://youphotos.yo.ohost.de/photo.php?=yourmail@hotmail.com
[VT 8/41]
http://www.virustotal.com/analisis/2ecbdc95a7679464867658f0291a835c8e10c78fc407cf49ccb04fe23ed5e22c-1262684696

Title: Re: MSN spammed trojan
Post by: sursmurf on January 13, 2010, 10:05:33 pm

Code: [Select]

http://lmagehost.org/img/imgbz.jpg
[VT 11/41]
http://www.virustotal.com/analisis/b9a93745561ad05f3e3cda40df7c3526b88fd31eacd6f1486666ca6290f43e0f-1263420008

Title: Re: MSN spammed trojan
Post by: sursmurf on February 01, 2010, 02:37:00 pm

Code: [Select]

http://img88.lmageshack.mn/865968/imgow.jpg
[VT 15/41]
http://www.virustotal.com/analisis/564a8371a452048c8520b5b442d343ba0d56900a5177c8367e40dc63cac94b1c-1265034242

Title: Re: MSN spammed trojan
Post by: sursmurf on February 11, 2010, 07:27:08 am

Code: [Select]

http://www.peyamnetsd.info 
                           -->   http://74.86.216.78/Picture_2525.exe
[VT 30/40]
http://www.virustotal.com/analisis/fb15bd2f8d0943f3378ef65ce387e57d8e5ac4e44ddc387b69b719142136e0ba-1265872757

Title: Re: MSN spammed trojan
Post by: sursmurf on February 14, 2010, 04:14:47 pm

Code: [Select]

http://www.foto-new.co.cc/?=yourmail@hotmail.com
[VT 4/41]
http://www.virustotal.com/analisis/9c352aa9470c3b0e7531ef997f8c688db6b65cd1ca9f8c8df684ba5d43e2773d-1266163605

Code: [Select]

http://www-myphoto.com/image.php?=yourmail@hotmail.com
[VT 9/41]
http://www.virustotal.com/analisis/12f49174a53f851753500495a11a82de8dedf2cee5e20ba481cdf82ba6f0ba69-1266163631


 

Title: Re: MSN spammed trojan
Post by: sursmurf on March 02, 2010, 02:17:34 pm

Code: [Select]

http://thanksimage.com/getphoto.php?=yourmail@hotmail.com
[VT 11/41]
http://www.virustotal.com/analisis/e36bab1d8cf2703521da102a659c06d01dbd441b613d74865f555b4e9052e2a2-1267539073

Title: Re: MSN spammed trojan
Post by: sursmurf on March 03, 2010, 02:32:58 pm

Code: [Select]

http://www.facebook-pic.com/image.php?=PIC01230.JPG?
[VT 3/42]
http://www.virustotal.com/analisis/3a1927e56942f3ce820919aab3eda9eba15ad3cea925c4c63b1280d8366ce64f-1267626486

Title: Re: MSN spammed trojan
Post by: sursmurf on March 03, 2010, 03:22:07 pm

Code: [Select]

http://pichello.com/showimg.php?=youremail@hotmail.com
[VT 11/41]
http://www.virustotal.com/analisis/b08dc616da54edfe3b5ff406ee6e0ca28ea84246385b3efe688c3f816dd5d162-1267629470

Title: Re: MSN spammed trojan
Post by: sursmurf on March 04, 2010, 02:15:16 pm

Code: [Select]

http://my.facebook-pic.net/image.php?=PIC012300.JPG?
[VT 1/42]
http://www.virustotal.com/analisis/73b2968c737adf5ba9c2fc828c9880160416302668413544adc7d00308f20b71-1267711489

Title: Re: MSN spammed trojan
Post by: sursmurf on March 08, 2010, 08:32:04 pm

Code: [Select]

http://img95.lmagebucket.com/img/acomsw.jpg
[VT 2/42]
http://www.virustotal.com/analisis/4e69fc649d23b75bfb3ccaa7e8d6c4c2ffa47c8dbb4cb68c088ae1c849adce84-1268079957

Title: Re: MSN spammed trojan
Post by: sursmurf on March 10, 2010, 07:58:56 pm

Code: [Select]

http://newmyfotos.com/showimage.php?=yourmail@hotmail.com
[VT 13/41]
http://www.virustotal.com/analisis/f1f8f21ac364ba63748b21ccb88a2192c76b6f3e87675c1ed7bf5c6086209726-1268250858

Title: Re: MSN spammed trojan
Post by: sursmurf on March 12, 2010, 11:54:39 am

Code: [Select]

hTTp://myspace-im.net/photoview.php?=yourmail@hotmail.com
[VT 19/41]
http://www.virustotal.com/analisis/a43d422a6d18ec33b49e0aed2a4d4ca4308d7c2f7642678054dd52abc0a4f2c2-1268394686

Title: Re: MSN spammed trojan
Post by: sursmurf on March 15, 2010, 04:05:17 pm

Code: [Select]

http://get-fotos.com/image.php?=yourmail@hotmail.com
[VT 12/42]
http://www.virustotal.com/analisis/38c5a9865a9ebea6612ffcd817f602abe79a8df699f0f9c59bf01126512b3e6e-1268668851

Title: Re: MSN spammed trojan
Post by: sursmurf on March 30, 2010, 07:47:01 am

Code: [Select]

http://imphotos-myspace.com/image.php?=yourmail@hotmail.com
VT 7/42
http://www.virustotal.com/analisis/7b5c89dc49c16561f71129cd885835bb7b703448ebfa031ffb75b4909356cec0-1269934896

Title: Re: MSN spammed trojan
Post by: sursmurf on April 05, 2010, 03:59:39 pm

The tinyurl link is spammed in messenger:

Code: [Select]

http://tinyurl.com/y8bjz6k
-->
http://www.aliukani.com/php/htlog/
-->
http://www.aliukani.com/php/htlog/java.exe

Client.class [VT 8/39]
http://www.virustotal.com/analisis/1847338f2ad1a84f589b57f9f33fe06a72af8cbeea2c3f6d431bd4e0a113f137-1270482805

java.exe [VT 2/39]
http://www.virustotal.com/analisis/36d7d33fe2209ef397456aa611b0d1aa6442fb47a2bdd79e44912af709c96d66-1270482718

Title: Re: MSN spammed trojan
Post by: sursmurf on April 06, 2010, 02:00:40 pm

Code: [Select]

http://yumsphoto.com/image.php?=youremail@hotmail.com
[VT 3/39]
http://www.virustotal.com/analisis/41689539ffb1565e8218990f77c572b97ec9e28878bbcf3ee0b44d32615df8a0-1270562139

Title: Re: MSN spammed trojan
Post by: sursmurf on April 09, 2010, 08:07:13 am

Code: [Select]

http://msn-foto-view.com/image.php?=youremail@hotmail.com
http://facebook-foto.com/image.php?=youremail@hotmail.com

[VT 2/39]
http://www.virustotal.com/analisis/a7c68e3e86efba0d6d4f3db70f80c70624c07337b7ceaa29a6f7a52e9e278ae4-1270799953

Code: [Select]

http://yourmyspace-pic.com/image.php?=youremail@hotmail.com

[VT 2/39]
http://www.virustotal.com/analisis/f42f3e2128009c93fc7335ea7aba4f7f9e2a16d3a0136eda7779f6ca1444179a-1270800162

Title: Re: MSN spammed trojan
Post by: sursmurf on April 21, 2010, 10:30:59 am

Code: [Select]

http://images4you-on.com/image.php?=youremail@hotmail.com
[VT 14/41]
http://www.virustotal.com/analisis/13d9ba1bcef66f1e850b9ee993c00caab91eeb319afa86ebd29a7c8ad9a4ff81-1271845613

Title: Re: MSN spammed trojan
Post by: sursmurf on April 22, 2010, 12:50:09 pm

Code: [Select]

http://bestfotoson.com/image.php?=youremail@hotmail.com
[VT 14/40]
http://www.virustotal.com/analisis/099a6fabcc144fd98a03f0d08f95b366a014c9db64ffb505fa5e7dde2e164a34-1271940427

Title: Re: MSN spammed trojan
Post by: sursmurf on May 24, 2010, 01:36:53 pm

Code: [Select]

hXXp://tinyurl.com/facebook-photo-2010-05-22

                  --> hxxp://web.face-albums.com/images/facebook-photo-2010-05-22-jpg.scr
[VT 1/41]
http://www.virustotal.com/analisis/37ff9121b4a30c0c94006a6f9fb088f43c1c498ec101792b368047909f0c2b32-1274707234

That in turn downloads:

Code: [Select]

hXXp://face-albums.com/pict.exe
[VT 1/41]
http://www.virustotal.com/analisis/a831560dbe4214fd264c539c5182b0b008175421f89b88cd7ebfd33443bae43d-1274707493

Title: Re: MSN spammed trojan
Post by: sursmurf on May 28, 2010, 05:35:35 pm

Code: [Select]

hXXp://www.facebooks.bz/profiles.php?id=1391479959
[VT 4/41]
http://www.virustotal.com/analisis/eaaff2180644b1e07aded6d6760a78738f982ae176ac2429bc7dda58cc62c620-1275067349