Malware Domain List

Malware Related => Malicious Domains => Gaztransitstroyinfo => Topic started by: Malware-Web-Threats on May 23, 2009, 05:09:33 pm

Title: 91.212.41.119
Post by: Malware-Web-Threats on May 23, 2009, 05:09:33 pm
PDF Exploit / Trojan
Code: [Select]
hxxp://bikpakoc.cn/nuc/index.php
hxxp://bikpakoc.cn/nuc/exe.php
hxxp://bikpakoc.cn/nuc/spl/pdf.pdf
VirusTotal (http://www.virustotal.com/analisis/a5b23025302f9d18d7c5d04278d9125b2769f9c214773a75577ee37bbcff0f7b-1243065499) - 6/40 (15.00%)
Wepawet (http://wepawet.iseclab.org/view.php?hash=579d982dceb858a61e85bab0cc9f7640&t=1243099198&type=js)
Wepawet (http://wepawet.iseclab.org/view.php?hash=6a8e4daabbdabb249b8677067c01924d&t=1243065889&type=js)

VirusTotal (http://www.virustotal.com/analisis/633f5bf8ef0a03fe1e8e00a3350aa1acd3174d7f0dbc16fc9c9bac747a59f7a5-1243065460) - 16/40 (40.00%)
Title: Re: 91.212.41.119
Post by: SysAdMini on May 24, 2009, 10:05:30 pm
redirects to exploits at bikpakoc.cn at same ip
Code: [Select]
silzefos.cn/s/in.cgi?10
Code: [Select]
silzefos.cn/nuc/index.php
pdf exploit
Code: [Select]
silzefos.cn/nuc/spl/pdf.pdfhttp://www.virustotal.com/analisis/633f5bf8ef0a03fe1e8e00a3350aa1acd3174d7f0dbc16fc9c9bac747a59f7a5-1243165950 16/39

trojan
Code: [Select]
silzefos.cn/nuc/exe.phphttp://www.virustotal.com/analisis/2e6fe7941812a6574dbd1da1d8952389ede8b2ba89ac93603a58f32152d7d64d-1243195206 5/39