Author Topic: Liberty Exploit System kit  (Read 37011 times)

0 Members and 1 Guest are viewing this topic.

September 25, 2009, 03:51:03 am
Reply #30

Malware-Web-Threats

  • Special Members
  • Hero Member

  • Offline
  • *

  • 354
    • MalwareURL
Exploits / Trojan Zbot
Code: [Select]
aol-update-installer.cn/cc/index.php
aol-update-installer.cn/cc/ethicsModel.pdf
aol-update-installer.cn/cc/ciceroHidden.swf
aol-update-installer.cn/cc/update.php
aol-update-installer.cn/cc/update.exe
aol-update-installer.cn/cc/admin.php

http://wepawet.iseclab.org/view.php?hash=911c68226b424c4176afad72cec9dbaa&t=1253822351&type=js
http://www.threatexpert.com/report.aspx?md5=77d95cee87843d00102d80ca5050781e
http://www.virustotal.com/analisis/40076fbd5df9e5c793238ae5351844a914f09592102178b231d291c866e5d176-1253804293 - 38/41 (92.68%)

zbot config file:
Code: [Select]
adobe-updating-service.cn/zs/cfg.bin


September 26, 2009, 06:58:38 pm
Reply #32

RS-232

  • Special Access
  • Sr. Member

  • Offline
  • *

  • 165
Quote
hxxp://worknssrv.cn/
->
hxxp://meankirdo.info/white/index.php

Quote
hxxp://biodentri.com/white/
Only for the "fun" of it...rs-232 aka sowhat-x aka younameit ;-)
http://www.youtube.com/watch?v=fADjY97_KTw

October 10, 2009, 02:28:09 pm
Reply #33

Malware-Web-Threats

  • Special Members
  • Hero Member

  • Offline
  • *

  • 354
    • MalwareURL
Code: [Select]
wmforum.cn/up1/
wmforum.cn/up1/ethicsFor.pdf
wmforum.cn/up1/lookHiddenPoint.swf
wmforum.cn/up1/update.php
wmforum.cn/up1/update.exe
wmforum.cn/up1/admin.php
http://wepawet.iseclab.org/view.php?hash=5a0b8a503de01de9a97881f2df110c33&t=1255185133&type=js

October 10, 2009, 02:30:26 pm
Reply #34

Malware-Web-Threats

  • Special Members
  • Hero Member

  • Offline
  • *

  • 354
    • MalwareURL
another one:

Code: [Select]
toringgo.cn/images/go.php?sid=6
toringgo.cn/turino/index.php
toringgo.cn/turino/sIpsum.pdf
toringgo.cn/turino/useSUsing.swf
toringgo.cn/turino/update.php
toringgo.cn/turino/update.exe
toringgo.cn/turino/admin.php

October 13, 2009, 09:45:03 pm
Reply #35

Malware-Web-Threats

  • Special Members
  • Hero Member

  • Offline
  • *

  • 354
    • MalwareURL
Code: [Select]
soldenga.cn/versa/index.php
soldenga.cn/versa/everIt.pdf
soldenga.cn/versa/update.php
soldenga.cn/versa/update.exe
soldenga.cn/versa/admin.php

Code: [Select]
olandon.com/versa/index.php
olandon.com/versa/everIt.pdf
olandon.com/versa/update.php
olandon.com/versa/update.exe
olandon.com/versa/admin.php

Code: [Select]
82.98.235.187/versa/index.php
82.98.235.187/versa/everIt.pdf
82.98.235.187/versa/update.php
82.98.235.187/versa/update.exe
82.98.235.187/versa/admin.php

October 13, 2009, 09:51:37 pm
Reply #36

Malware-Web-Threats

  • Special Members
  • Hero Member

  • Offline
  • *

  • 354
    • MalwareURL
Code: [Select]
homut1.cn/1/index.php
homut1.cn/1/thereHas.pdf
homut1.cn/1/haveHas.swf
homut1.cn/1/update.exe
homut1.cn/1/admin.php