Автор: blog

Received: from s9.megojom.ru (megojom.ru [5.188.139.35]) Date: Tue, 2 Nov 2021 07:0x:xx +0000 From: Aleksandr <info@s9.megojom.ru> Subject: Offer (Предложение) 5.188.139.34 grehemon.ru 5.188.139.35 megojom.ru 5.188.139.36 tefalongo.ru 5.188.139.37 eseneno.ru 5.188.139.38 raferenco.ru

The host at this IP address is currently being used to distribute malware. Malware distribution located here: hXXp://thisonecantbebanned.top/moons/top.exe $ dig +short thisonecantbebanned.top 78.155.222.151 Referencing malware binaries (MD5 hash): 10461cee6c477e426c45d9ea4723d93e — AV detection: 32 / 65 (49.23) 14a834ed1b4a0fcddce3ab973699960c — AV detection: 36 / 67 (53.73) 17464a721875e06437c0a7da619f1ba2 — AV detection: 18 / 63 (28.57) 1821f381f526f551b747fa3213ea9257 — AV… Читать далее Malware distribution @78.155.222.151

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 188.124.37.219 on port 26360 TCP: $ telnet 188.124.37.219 26360 Trying 188.124.37.219… Connected to 188.124.37.219. Escape character… Читать далее RedLineStealer botnet controller @188.124.37.219

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 5.8.76.202 on port 443 TCP: $ telnet 5.8.76.202 443 Trying 5.8.76.202… Connected to 5.8.76.202. Escape character… Читать далее Malware botnet controller @5.8.76.202