Emotet malware distribution @ [compromise website]

The host at this IP address is hosting a website that have been compromised by threat actors to distribute Emotet (aka Heodo) malware. The following URL is hosting a webshell that is being accessed by the threat actors programmatically to place malware on the website:

URL: http://bitsisland.com/wp-content/themes/festive/upgrade/JST10x.php
Host: bitsisland.com
IP address:
Hostname: li2183-33.members.linode.com

В рубрике linode.com

Добавить комментарий

Ваш адрес email не будет опубликован.