GOOGLE phish running on plumts[.]com

1. Found: 2018-03-15 07:15:21.215000
2. URL: https://sport.plumts.com/snext/gd%20new.zip
3. File: sport.plumts.com-snext-gd%20new.zip
4. Domain: plumts.com
5. Target: GOOGLE
6. Name Size Date MD5 gd new/gd/css/ashegradient.jpg 145532 2016-01-03 18:37:48 6505fd1523f0477421074b0950ec7648
7. File appears in 56 kits
8. gd new/gd/css/cdrive.png 10212 2015-07-24 06:30:16 aa2e5a5a6c9513a1f9334a9abf90a5ae
9. File appears in 66 kits and under 2 different file names
10. gd new/gd/css/G.drive-logo.png 2807 2016-01-03 10:41:28 54d0487fe135c1d2da6700510d2711e4
11. File appears in 56 kits
12. gd new/gd/css/homestyle.css 4403 2016-01-11 04:52:48 1ba43bb4b583ae6010f660d871575447
13. File appears in 56 kits
14. gd new/gd/css/medialog.css 2331 2016-01-11 04:51:36 9cadb09f0d5706aca7c546ac5e85a729
15. File appears in 56 kits
16. gd new/gd/css/theme.css 1530 2016-01-06 00:09:56 7fb524bb5f1bff891ee619d85e57f737
17. File appears in 67 kits
18. gd new/gd/favicon.ico 5430 2013-12-26 11:27:44 81bb71a0ea80b15d3273ee1d1cff7854
19. File appears in 61 kits and under 3 different file names
20. gd new/gd/Geodata/_Mail_State_List.php 173 2017-04-25 09:22:50 da57c52c68fb1cf48f1c89c2357acc4d
21. File appears in 5 kits
22. gd new/gd/imgs/al.png 1183 2016-01-05 06:59:30 1db15cc5ad50540b10cde2d733efd2a4
23. File appears in 1245 kits and under 3 different file names
24. gd new/gd/imgs/email.png 2921 2016-01-05 07:01:38 f093ed003976ef8aa9d299051c06f26b
25. File appears in 1250 kits and under 2 different file names
26. gd new/gd/imgs/facebook-icon-32.png 939 2016-01-04 07:56:04 470100ca650a5d7acf753a787c827d7c
27. File appears in 58 kits
28. gd new/gd/imgs/favicon..png 1197 2016-01-05 07:01:24 46f7a1d52b8a46d23ee9c64b24adb4f0
29. File appears in 1138 kits and under 5 different file names
30. gd new/gd/imgs/favicon.ico 5430 2013-12-26 11:27:44 81bb71a0ea80b15d3273ee1d1cff7854
31. File appears in 61 kits and under 3 different file names
32. gd new/gd/imgs/Gmll.png 1528 2016-01-05 07:00:10 5d2f329d5813e9ad215d0117610a58c5
33. File appears in 1244 kits and under 3 different file names
34. gd new/gd/imgs/home_al.gif 4686 2016-01-03 22:14:46 a2b5dffdc955a211fa46c8448dd83553
35. File appears in 58 kits
36. gd new/gd/imgs/home_al.jpg 5849 2016-01-03 23:47:32 9b3f0ec4406edfcfdea24a715d604eaa
37. File appears in 58 kits
38. gd new/gd/imgs/home_al.png 4849 2016-01-03 22:11:48 0994bc37daef699a455a49baa5e816de
39. File appears in 58 kits
40. gd new/gd/imgs/home_gl.png 16380 2016-01-03 23:54:14 5281fcab27d9a1e1c84c1f8fef17a237
41. File appears in 57 kits
42. gd new/gd/imgs/home_hm - Copy.png 10908 2016-01-03 22:06:10 c0e74ac38d12af9aaa5f8961d1fbc254
43. File appears in 57 kits
44. gd new/gd/imgs/home_hm.png 8969 2016-01-03 23:57:42 f8e4fb425cc81dc64c93bbbe6a2824d9
45. File appears in 57 kits
46. gd new/gd/imgs/home_yl.png 11631 2016-01-03 21:50:28 1270be0592780d404473ae4c73aaf856
47. File appears in 58 kits
48. gd new/gd/imgs/live_outlook.png 517 2016-01-05 07:00:04 8dccdb0f930ec8ff6c62dd13474fa9f4
49. File appears in 1244 kits and under 3 different file names
50. gd new/gd/imgs/logo_strip_2x.png 11156 2016-01-06 08:00:08 384a868cf5a995d033c4ac6e30c60355
51. File appears in 1269 kits and under 5 different file names
52. gd new/gd/imgs/lp-aol-head-lg.png 6664 2016-01-03 23:34:26 ccffdab46aa3bd1c7cd0499a2943a05b
53. File appears in 73 kits and under 3 different file names
54. gd new/gd/imgs/ymll.png 2830 2016-01-05 07:00:32 fda2a0cac8b16568eed32edbc85b5db8
55. File appears in 1245 kits and under 3 different file names
56. gd new/gd/includes/functions.php 159 2016-01-11 04:49:12 fe4a5799df89e847e578a94a9aad8dc8
57. File appears in 56 kits
58. gd new/gd/index.html 4730 2016-01-11 04:46:20 81ce2e96575e9ddf4f62100d7013de9e
59. File appears in 55 kits
60. gd new/gd/js/ddsclickreader.js 15268 2016-01-05 13:27:58 0953f4a527ac8572c299df225b84f42a
61. File appears in 56 kits
62. gd new/gd/js/evalidation.js 469 2016-01-05 13:14:42 b493d904f18054bcc01f32d9204a3179
63. File appears in 58 kits
64. gd new/gd/js/radioselect.js 842 2016-01-05 21:55:28 4e1933d03015784200af91ac5b1ee358
65. File appears in 70 kits and under 2 different file names
66. gd new/gd/js/selectddsclickreader.js 15270 2016-01-11 03:15:30 7b6c8ae5972b4083b6f7ebb29a791acc
67. File appears in 56 kits
68. gd new/gd/mread=/dm=opening.html 842 2016-01-07 07:51:38 c0774fd9849d55133b6ce5883db99208
69. File appears in 56 kits
70. gd new/gd/mread=/files.png 12339 2016-01-04 00:14:52 1ea265b6f6453d0a47b1429f35ccd110
71. File appears in 63 kits
72. gd new/gd/mread=/loader33.gif 8920 2014-05-02 21:24:52 0706d1844a336d78a83f2c63b4d16e44
73. File appears in 63 kits and under 2 different file names
74. gd new/gd/nmixed.php 1201 2016-01-11 04:49:52 fa83fb186bc5910b337fb263311931ad
75. File appears in 54 kits
76. gd new/gd/results.php 1108 2016-01-06 22:18:26 cdc1c4f987dbb9863cd478a4043e3265
77. File appears in 54 kits
78. gd new/gd/vprocess.php 1672 2016-01-11 04:38:46 324d7b5772235c69b619bde5d00d0e7d
79. File appears in 56 kits
80.  
81. 2 Email addresses found:
82. wirebox1oz@gmail.com (appears in 12 kits)
83. newidea@alliancellc.com (appears in 53 kits)
84.  
85.  
86.  
87. https://texasmalwareblog.blogspot.com @phish_total