Malware Domain List

Malware Related => Malicious Domains => Topic started by: EP_X0FF on October 06, 2011, 12:33:17 pm

Title: TDL4, TDSS
Post by: EP_X0FF on October 06, 2011, 12:33:17 pm

TDL4 (0.03)

Quote

hxxp://95.168.172.225/1.exe

VT

http://www.virustotal.com/file-scan/report.html?id=00e9af76021d54fd7de17d893982232882b2e2f50b8a79dc179a6931e05cf259-1317901370 (http://www.virustotal.com/file-scan/report.html?id=00e9af76021d54fd7de17d893982232882b2e2f50b8a79dc179a6931e05cf259-1317901370)

Quote

[main]
version=0.03
aid=66671
sid=0
builddate=351
installdate=6.10.2011 12:31:29
rnd=1945549517
[inject]
*=cmd.dll
* (x64)=cmd64.dll
[cmd]
srv=hxxps://lo4undreyk.com/;hxxps://sh01cilewk.com/;hxxps://cap01tchaa.com/;hxxps://kur1k0nona.com/;hxxps://u101mnay2k.com/
wsrv=hxxp://gnarenyawr.com/;hxxp://rinderwayr.com/;hxxp://jukdoout0.com/;hxxp://swltcho0.com/;hxxp://ranmjyuke.com/
psrv=hxxp://crj71ki813ck.com/
version=0.31

Title: Re: TDL4, TDSS
Post by: WIEx on October 26, 2011, 04:27:32 pm

reupload sample please for anilysis

Title: Re: TDL4, TDSS
Post by: EP_X0FF on October 29, 2011, 12:44:06 pm

TDL4

Quote

hxxp://moddersondazone.com/random/trol.exe

Code: [Select]

[main]
version=0.03
aid=30392
sid=0
builddate=351
installdate=27.10.2011 11:21:24
rnd=1564855640
[inject]
*=cmd.dll
* (x64)=cmd64.dll
[cmd]
srv=hxxps://lo4undreyk.com/;hxxps://sh01cilewk.com/;
hxxps://cap01tchaa.com/;hxxps://kur1k0nona.com/;hxxps://u101mnay2k.com/
wsrv=hxxp://gnarenyawr.com/;hxxp://rinderwayr.com/;
hxxp://jukdoout0.com/;hxxp://swltcho0.com/;hxxp://ranmjyuke.com/
psrv=hxxp://crj71ki813ck.com/
version=0.31
http://www.virustotal.com/file-scan/report.html?id=6b6bcf6af3112d014ee37dc28422456ced76a038d4e1e63c8a7782495c8f926f-1317817325

Title: Re: TDL4, TDSS
Post by: WIEx on October 30, 2011, 06:19:51 am

thank you!

Title: Re: TDL4, TDSS
Post by: steward on November 19, 2011, 01:13:30 pm

Could u please upload the file.

Thx

Title: Re: TDL4, TDSS
Post by: SysAdMini on November 19, 2011, 01:19:49 pm

Quote from: steward on November 19, 2011, 01:13:30 pm

Could u please upload the file.

Thx

Uploading samples to MDL is forbidden.

http://www.malwaredomainlist.com/forums/index.php?topic=2635.0

Title: Re: TDL4, TDSS
Post by: steward on November 19, 2011, 01:29:30 pm

So sorry.

At least a link plz.