Malware Domain List
Malware Related => Malicious Domains => Zlkon.lv => Topic started by: CkreM on April 05, 2009, 06:23:17 pm
-
Koobface:
http://viewworldmy2.com/software/38e4f74690/10005/1/Setup.exe
http://rtraffclicks.com/software/38e4f74690/10005/1/Setup.exe
http://viewworldmy1.com/view/1/1000/5 (no trojan there atm)http://www.virustotal.com/analisis/2f4d43ab87704959d145405cd9305627
-
xviewworldmy2.com/view/1/1220/3
-
Fake codec page + trojan koobface
hxxp://hqviewworldmy2.com/view/1/1000/5
http://hqviewworldmy2.com/software/dc0536f1f1/10005/1/Setup.exe
Anubis (http://anubis.iseclab.org/?action=result&task_id=1f580c5d1e923f914c18bf600876b4ae8)
VirusTotal: Worm Koobface (http://www.virustotal.com/analisis/6b1538063741ae9c9e62c21ae4431ce1) - 19/40 (47.50%)
Second download on 91.92.165.55 [stanishev.com]
hxxp://stanishev.com/1/pch.exe
VirusTotal: Trojan (http://www.virustotal.com/analisis/42bb74abac1f10212672ee2dabea3402) - 19/40 (47.5%)
Config on 218.93.202.50 [nua06032009.biz]
hxxp://nua06032009.biz/ld/gen.php
#noparam #PID=6145
STARTONCE|http://stanishev.com/1/pch.exe
START|http://stanishev.com/1/nfr.exe
STARTONCE|http://stanishev.com/1/pp.06.exe
WAIT|120 #BLACKLABEL EXIT
-
Fake codec page + trojan Koobface
hxxp://hxviewworldmy2.com/view/1/1000/5
hxxp://hxviewworldmy2.com/software/e3d6b7561f/10005/1/Setup.exe
File name: Setup.exe
File size: 16384 bytes
MD5: 96bf2207c64602e9e71d99977fc68f21
VirusTotal: Win32/Koobface (http://www.virustotal.com/analisis/e11c2132a5b958531a063c8bfa960fdb) - 23/40 (57.5%)
-
Chinese worm for social networks in Latvia?! GG...