Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 8/16/2016 TorrentLocker Ransomware
- ----------------------------
- Link to Javascript payload in email : http://pastebin.com/zKLxFwap
- ----------------------------
- Sources of infection
- ----------------------------
- Destination Host
- 107.180.41.89 siasibisaat.com/TF4eGc2D0uil/fENDAKSItWp5Xn7a.php
- 85.143.210.188 vize.aglbillspayment.com/znlr.php
- 85.143.210.188 uxk.aglbillspayment.com/s0zv58oz.php
- ----------------------------
- Callouts
- ----------------------------
- Destination Host
- 172.22.242.5 gnhdd.com/templates/file.exe
- .10 yvksega.kadhyzyi.net
- .11 etimykul.kadhyzyi.net
- .12 ohaxwnunav.kadhyzyi.net
- .13 apibyrr.kadhyzyi.net
- .14 awxgyqgf.kadhyzyi.net
- .15 yvuvev.kadhyzyi.net
- .16 esuhu.kadhyzyi.net
- .17 ehhta.kadhyzyi.net
- .18 ulebar.kadhyzyi.net
- .19 ovibyfice.kadhyzyi.net
- .2 ocuri.kadhyzyi.net
- .20 unyboqexu.kadhyzyi.net
- .21 ijofexat.kadhyzyi.net
- .22 ilbj.kadhyzyi.net
- .23 uxoc.kadhyzyi.net
- .24 unyvafeda.kadhyzyi.net
- .25 apaxo.kadhyzyi.net
- .26 yginec.kadhyzyi.net
- .27 ilefin.kadhyzyi.net
- .28 pkozi.kadhyzyi.net
- .29 yjedybupo.kadhyzyi.net
- .3 www.download.windowsupdate.com
- .30 ygupyfogyry.kadhyzyi.net
- .31 pposugasus.kadhyzyi.net
- .32 ejepajodat.kadhyzyi.net
- .33 udivecvti.kadhyzyi.net
- .34 ttzkndjkex.kadhyzyi.net
- .35 uxev.kadhyzyi.net
- .36 yhykoxm.kadhyzyi.net
- .37 ocubuloqi.kadhyzyi.net
- .38 adsp.kadhyzyi.net
- .39 ariboguvu.kadhyzyi.net
- .4 ipecho.net
- .40 odypu.kadhyzyi.net
- .41 amymofop.kadhyzyi.net
- .42 orujyfijy.kadhyzyi.net
- .43 xbocywhjosi.kadhyzyi.net
- .44 otizureqorv.kadhyzyi.net
- .45 etfz.kadhyzyi.net
- .46 iruvi.kadhyzyi.net
- .47 ubejy.kadhyzyi.net
- .48 pnako.kadhyzyi.net
- .49 ygisogyzoto.kadhyzyi.net
- .5 myexternalip.com
- .50 ejivi.kadhyzyi.net
- .51 qpedy.kadhyzyi.net
- .52 ezjpi.kadhyzyi.net
- .53 iqehisorw.kadhyzyi.net
- .6 wtfismyip.com
- .7 uhagenyr.kadhyzyi.net
- .8 ufylozok.kadhyzyi.net
- .9 addcawuq.kadhyzyi.net
- *******
- More FROM @neonprimetime security
- http://pastebin.com/u/Neonprimetime
- https://www.virustotal.com/en/USER/neonprimetime/
- https://twitter.com/neonprimetime
- https://www.reddit.com/USER/neonprimetime
Add Comment
Please, Sign In to add comment