Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- MD5 (2018-11-20.isfbv217.client.decoded.vk.dll) = 2baddd0f964870bbad7c6e9ad0475dec
- MD5 (2018-11-20.isfbv217.loader.decoded.vk.exe) = 8e4f36806dd21b7ca40d20ba11f2fe14
- Bot ['2.17']
- Build ['38']
- Botnet/Group ID ['1000']
- DGA TLDs ['com', 'ru', 'org']
- Server [’110’]
- Encryption key ['K2u7G0lE4u1VoS0V']
- DGA CRC ['0x4eb7d2ca']
- DGA Base URL ['constitution.org/usdeclar.txt']
- Domains ['in.ledalco.at/wpapi', 'yap.yolopuk.at/wpapi', 'torafy.cn/wpapi', 'io.ledalco.at/wpapi', 'int.nokoguard.at/wpapi', 'rest.relonter.at/wpapi', 'yraco.cn/wpapi', 'apt.melotor.at/wpapi', 'vi.relonter.at/wpapi', 'pr.unoreq.at/wpapi', 'gl.filmboun.at/wpapi', 'arp.sosolop.at/wpapi', 'harent.cn/wpapi', 'a5.sosolop.at/wpapi']
- Path: ['/images/']
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement