API tools faq
paste
Neonprimetime

TorrentLocker Ransomware IoCs

Neonprimetime
Aug 17th, 2016
974
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.04 KB | None | 0 0
raw download clone embed print report
  1. 8/16/2016 TorrentLocker Ransomware
  2. ----------------------------
  3. Link to Javascript payload in email : http://pastebin.com/zKLxFwap
  4. ----------------------------
  5. Sources of infection
  6. ----------------------------
  7. Destination Host
  8. 107.180.41.89 siasibisaat.com/TF4eGc2D0uil/fENDAKSItWp5Xn7a.php
  9. 85.143.210.188 vize.aglbillspayment.com/znlr.php
  10. 85.143.210.188 uxk.aglbillspayment.com/s0zv58oz.php
  11. ----------------------------
  12. Callouts
  13. ----------------------------
  14. Destination Host
  15. 172.22.242.5 gnhdd.com/templates/file.exe
  16. .10 yvksega.kadhyzyi.net
  17. .11 etimykul.kadhyzyi.net
  18. .12 ohaxwnunav.kadhyzyi.net
  19. .13 apibyrr.kadhyzyi.net
  20. .14 awxgyqgf.kadhyzyi.net
  21. .15 yvuvev.kadhyzyi.net
  22. .16 esuhu.kadhyzyi.net
  23. .17 ehhta.kadhyzyi.net
  24. .18 ulebar.kadhyzyi.net
  25. .19 ovibyfice.kadhyzyi.net
  26. .2 ocuri.kadhyzyi.net
  27. .20 unyboqexu.kadhyzyi.net
  28. .21 ijofexat.kadhyzyi.net
  29. .22 ilbj.kadhyzyi.net
  30. .23 uxoc.kadhyzyi.net
  31. .24 unyvafeda.kadhyzyi.net
  32. .25 apaxo.kadhyzyi.net
  33. .26 yginec.kadhyzyi.net
  34. .27 ilefin.kadhyzyi.net
  35. .28 pkozi.kadhyzyi.net
  36. .29 yjedybupo.kadhyzyi.net
  37. .3 www.download.windowsupdate.com
  38. .30 ygupyfogyry.kadhyzyi.net
  39. .31 pposugasus.kadhyzyi.net
  40. .32 ejepajodat.kadhyzyi.net
  41. .33 udivecvti.kadhyzyi.net
  42. .34 ttzkndjkex.kadhyzyi.net
  43. .35 uxev.kadhyzyi.net
  44. .36 yhykoxm.kadhyzyi.net
  45. .37 ocubuloqi.kadhyzyi.net
  46. .38 adsp.kadhyzyi.net
  47. .39 ariboguvu.kadhyzyi.net
  48. .4 ipecho.net
  49. .40 odypu.kadhyzyi.net
  50. .41 amymofop.kadhyzyi.net
  51. .42 orujyfijy.kadhyzyi.net
  52. .43 xbocywhjosi.kadhyzyi.net
  53. .44 otizureqorv.kadhyzyi.net
  54. .45 etfz.kadhyzyi.net
  55. .46 iruvi.kadhyzyi.net
  56. .47 ubejy.kadhyzyi.net
  57. .48 pnako.kadhyzyi.net
  58. .49 ygisogyzoto.kadhyzyi.net
  59. .5 myexternalip.com
  60. .50 ejivi.kadhyzyi.net
  61. .51 qpedy.kadhyzyi.net
  62. .52 ezjpi.kadhyzyi.net
  63. .53 iqehisorw.kadhyzyi.net
  64. .6 wtfismyip.com
  65. .7 uhagenyr.kadhyzyi.net
  66. .8 ufylozok.kadhyzyi.net
  67. .9 addcawuq.kadhyzyi.net
  68.  
  69.  
  70. *******
  71. More FROM @neonprimetime security
  72.  
  73. http://pastebin.com/u/Neonprimetime
  74. https://www.virustotal.com/en/USER/neonprimetime/
  75. https://twitter.com/neonprimetime
  76. https://www.reddit.com/USER/neonprimetime
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!