Malware Related > Malicious Domains
Trojan Ransom
EP_X0FF:
ransoms from Amazon
--- Quote ---hxxp://w2yporn.s3.amazonaws.com/xxx_video.exe
hxxp://w1porka.s3.amazonaws.com/xxx_video.exe
--- End quote ---
pornorolik ransoms
--- Quote ---hxxp://kiss-lublutebya.info/1/video/porno-rolik1.avi.exe
hxxp://kiss-lublutebya.info/2/video/porno-rolik2.avi.exe
hxxp://kiss-lublutebya.info/3/video/porno-rolik3.avi.exe
hxxp://kiss-lublutebya.info/4/video/porno-rolik4.avi.exe
hxxp://kiss-lublutebya.info/6/video/porno-rolik6.avi.exe
hxxp://kiss-lublutebya.info/7/video/porno-rolik7.avi.exe
hxxp://kiss-lublutebya.info/8/video/porno-rolik8.avi.exe
hxxp://kiss-lublutebya.info/9/video/porno-rolik9.avi.exe
hxxp://kiss-lublutebya.info/10/video/porno-rolik10.avi.exe
--- End quote ---
MBRLocker fresh
--- Quote ---hxxp://fatrmutrfaker.ru/xxxvideo.avi.exe
--- End quote ---
EP_X0FF:
Amazon (all different samples)
--- Quote ---hxxp://us1porn.s3.amazonaws.com/xxx_video.exe
hxxp://2bioko.s3.amazonaws.com/xxx_video.exe
--- End quote ---
Pornorolik
--- Quote ---hxxp://xxxfilmaviforyou.info/1/video/porno-rolik1.avi.exe
hxxp://xxxfilmaviforyou.info/2/video/porno-rolik2.avi.exe
hxxp://xxxfilmaviforyou.info/3/video/porno-rolik3.avi.exe
hxxp://xxxfilmaviforyou.info/4/video/porno-rolik4.avi.exe
hxxp://xxxfilmaviforyou.info/6/video/porno-rolik6.avi.exe
hxxp://xxxfilmaviforyou.info/7/video/porno-rolik7.avi.exe
hxxp://xxxfilmaviforyou.info/8/video/porno-rolik8.avi.exe
hxxp://xxxfilmaviforyou.info/9/video/porno-rolik9.avi.exe
hxxp://xxxfilmaviforyou.info/10/video/porno-rolik10.avi.exe
--- End quote ---
MBRLocker (each address gives different sample)
--- Quote ---hxxp://utubexxxvideo.ru/xxxvideo.avi.exe
hxxp://gigosporno.ru/xxxvideo.avi.exe
--- End quote ---
EP_X0FF:
Amazon (all different samples)
--- Quote ---hxxp://gnpotk.s3.amazonaws.com/xxx_video.exe
hxxp://w3nixx.s3.amazonaws.com/xxx_video.exe
hxxp://sv2porn.s3.amazonaws.com/xxx_video.exe
--- End quote ---
Pornorolik
--- Quote ---hxxp://hardsexfilmavi.info/1/video/porno-rolik1.avi.exe
hxxp://hardsexfilmavi.info/2/video/porno-rolik2.avi.exe
hxxp://hardsexfilmavi.info/3/video/porno-rolik3.avi.exe
hxxp://hardsexfilmavi.info/4/video/porno-rolik4.avi.exe
hxxp://hardsexfilmavi.info/6/video/porno-rolik6.avi.exe
hxxp://hardsexfilmavi.info/7/video/porno-rolik7.avi.exe
hxxp://hardsexfilmavi.info/8/video/porno-rolik8.avi.exe
hxxp://hardsexfilmavi.info/9/video/porno-rolik9.avi.exe
hxxp://hardsexfilmavi.info/10/video/porno-rolik10.avi.exe
--- End quote ---
MBRLocker
--- Quote ---hxxp://dikiesu4ki.ru/xxxvideo.avi.exe
hxxp://RUSSIANSUKAVOM.ru/xxxvideo.avi.exe
hxxp://geffkiudaff.ru/xxxvideo.avi.exe
hxxp://udaffkom.ru/xxxvideo.avi.exe
--- End quote ---
EP_X0FF:
Hope I'm not flooding very often :)
This is malware redirector used by Pornorolik ransom. It leads to new domains.
--- Quote ---hxxp://dokoler-w.info/gischematest.cgi?14
--- End quote ---
by changing last id number you can go to different malware samples pages.
Hot Amazon ransom
--- Quote ---hxxp://ffporm.s3.amazonaws.com/xxx_video.exe
--- End quote ---
SysAdMini:
--- Quote from: EP_X0FF on July 17, 2011, 01:02:16 pm ---Hope I'm not flooding very often :)
--- End quote ---
No, it's ok. I appreciate your submissions.
--- Quote from: EP_X0FF on July 17, 2011, 01:02:16 pm ---This is malware redirector used by Pornorolik ransom. It leads to new domains.
--- Code: ---hxxp://dokoler-w.info/gischematest.cgi?14
--- End code ---
by changing last id number you can go to different malware samples pages.
--- End quote ---
I can't find malware. Can you give me an example what you see ?
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version