MalwareMustDie's Pastebin

Malware Crusade Battlefield - Near C2    85,825 348,468 6 years ago
Name / Title Added Expires Hits Syntax  
Grey stuff: TDS Used Landing Page JS Code Feb 23rd, 14 Never 373 JavaScript -
Page replacement..hard way to inject.. Feb 22nd, 14 Never 344 Java -
Iframer JS Injection Feb 22nd, 14 Never 453 JavaScript -
CookieBomb pad Feb 22nd, 14 Never 386 JavaScript -
And another Perl DDoS Shell Bot Feb 21st, 14 Never 975 Perl -
PerlBot Remote Downloader Feb 21st, 14 Never 483 Perl -
Another PerlBot Shell Feb 21st, 14 Never 670 Perl -
CookieBomb v2 - First Cushion Cookie Flow Step by ... Feb 20th, 14 Never 703 Java -
Kuluoz Reversing "QUICK" Notes Feb 14th, 14 Never 465 ASM (NASM) -
Hacked Site with the US IRC Server'S Perl ShellBot Feb 12th, 14 Never 1,081 Perl -
#MalwareMustDie - Decoding Kelihos Simda download ... Feb 10th, 14 Never 742 JavaScript -
Have a "xmlrpc.php" & GooDork for Br... Feb 6th, 14 Never 669 XML -
Phishing AMEX Script (neutralized) Feb 5th, 14 Never 989 JavaScript -
Codes and Decodes: Cracks of the Traffer and Malve... Feb 1st, 14 Never 338 JavaScript -
Blah!! New ESD.php Server Side Infector Logic Jan 31st, 14 Never 551 JavaScript -
CookieBomb v2 | the 2nd cushion: Google.JS Jan 29th, 14 Never 422 JavaScript -
A wtf suspicious TDS.. Jan 27th, 14 Never 553 None -
CookieBomb Case Jan 2014 Jan 22nd, 14 Never 632 JavaScript -
Forensics Data - PowerLocker $str(MemDumps) Jan 17th, 14 Never 392 None -
#Nuclear EK infection domain chains.. Jan 16th, 14 Never 335 None -
#Simda Payload callbacks Traffic (origin: Kelihos ... Jan 16th, 14 Never 292 None -
#Cridex Trojan Infection IP Source per Jan 17 2014 Jan 16th, 14 Never 859 None -
Trojan/PWS Win32/Cridex RETURNS Jan 15th, 14 Never 618 None -
FUD Kelihos Jan 14th, 14 Never 279 None -
Kuluoz - Latest Version | Binary DUMP Analysis Jan 14th, 14 Never 489 None -
#MMD Crime Investigation 20140108-001 Jan 8th, 14 Never 774 mIRC -
qqq.inc.php PHP Hacks aimed DDoS & Windows Rem... Jan 5th, 14 Never 617 PHP -
Shadow Logger Registry Trace in Memory Dump (foren... Jan 2nd, 14 Never 877 None -
Shadow Logger Process Record Jan 2nd, 14 Never 405 None -
Shadow Logger PE Strings Jan 2nd, 14 Never 752 None -
#MMD Tango Down 311/2,989 Dec 2nd, 13 Never 407 None -
Analysis of the suspected Linux DDoS backdoor Tool Nov 14th, 13 Never 1,813 None -
SURBL CryptoLocker Nov 13th, 13 Never 485 None -
BOTNET KULUOZ/ ASPROX BACK WITH NEW EXCYPTION Nov 12th, 13 Never 404 None -
Injection Code to .PL Redirected Spam sites.. Nov 11th, 13 Never 465 JavaScript -
Nuclear EK Landing Page in Japan serves Citadel Nov 8th, 13 Never 237 JavaScript -
FaceBook IM & Web Driven Facebook Trojan with ... Nov 7th, 13 Never 481 JavaScript -
#MalwareMustDie - Abandoned infected site w/ Aband... Nov 6th, 13 Never 1,433 JavaScript -
#MalwareMustDie - MORE Zbot Trojans UP and ALIVE Nov 5th, 13 Never 295 None -
#MalwareMustDie! ZEUS links that needed to nuke down: Nov 5th, 13 Never 305 None -
#MalwareMustDie - #PoC of HOW Kelihos Infecting vi... Nov 5th, 13 Never 304 None -
#MalwareMustDie! Zombie PCs used by Botnet & M... Nov 4th, 13 Never 454 None -
The cracking of 709days used by RunForrestRun DGA Nov 2nd, 13 Never 323 JavaScript -
DGA (PseudoRandom Domain) RunForrestRun, Decoding ... Nov 2nd, 13 Never 326 JavaScript -
#MalwareMustDie! Zeus Variant Payloads Oct 30th, 13 Never 377 None -
#malwareMustDie - The #w00tw00t Attack log Oct 20th, 13 Never 695 Apache Log -
YAra rule: Citadel Oct 15th, 13 Never 416 None -
#ESD.PHP REDIRECTOR UNLEASHED | Server Side's Code Oct 5th, 13 Never 1,069 PHP -
#MalwareMustDie! Peeking at Recent Blackhole via I... Sep 19th, 13 Never 351 None -
#MalwareMustDie! Black Proxies Bad Guys Using Sep 3rd, 13 Never 6,143 None -
KELIHOS MALWARE DETECTION RATIO - BY AV SCANNING A... Aug 31st, 13 Never 381 None -
Kelihos TODAY's IP - In Detail Version: 2,189 Aug 15th, 13 Never 1,329 None -
I found these.. Aug 13th, 13 Never 354 None -
OP CleanUp Kelihos, CN: Polandia/Polska Aug 13th, 13 Never 438 None -
OP CleanUp Kelihos, CN: Japan Aug 13th, 13 Never 403 None -
OP CleanUp Kelihos, CN: Romania Aug 13th, 13 Never 350 None -
OP CleanUp Kelihos, CN: Russia Aug 13th, 13 Never 595 None -
OP CleanUp Kelihos, CN: USA Aug 13th, 13 Never 1,457 None -
OP CleanUp Kelihos, CN: India Aug 13th, 13 Never 280 None -
#MalwareMustDie - Kelihos Botnet IP Aug 11, 2013 t... Aug 11th, 13 Never 16,069 None -
#MalwareMustDie - Kelihos Botnet IP AUg 11, 2013 Aug 11th, 13 Never 214 None -
#MalwareMustDie! Kelihos BotNet IP TOTAL Aug 10th ... Aug 10th, 13 Never 3,467 None -
Chekcing Latest Kelihos .COM domains sinkhole status Aug 10th, 13 Never 309 None -
#MalwareMustDie! Last milking today, sorted unique... Aug 10th, 13 Never 179 None -
MalwareMustDie! Kelihos BotNet IPs #3 | Aug 10th 2013 Aug 9th, 13 Never 1,391 None -
Kelihos Hit US IP.. Aug 9th, 13 Never 250 None -
#MalwareMustDie! Kelihos BotNet IP-2 Aug 10th 2013 Aug 9th, 13 Never 1,060 None -
#MalwareMustDie - Log of Report of ANOTHER 2 Kelih... Aug 9th, 13 Never 116 None -
#MalwareMustDie - Log of Report of 2 more Kelihos ... Aug 9th, 13 Never 200 None -
#MalwareMustDie! Kelihos BotNet IP Aug 10th 2013 Aug 9th, 13 Never 713 None -
#MalwareMustDie - Log of Report of 8 more Kelihos ... Aug 9th, 13 Never 288 None -
New Kelihos IP milked from new domain: OFCIWOX.COM Aug 9th, 13 Never 358 None -
#MalwareMustDie! Kelihos IP Address for CLEAN-UPS Aug 8th, 13 Never 339 None -
#MalwareMustDie! 623 Kelihos IP Address for CLEAN-UPS Aug 8th, 13 Never 160 None -
DAVUJUZ.COM DNS CACHE CHECKS Aug 7th, 13 Never 134 None -
#MalwareMustDie! Monitoring INTERNET.BS base Kelih... Aug 6th, 13 Never 443 None -
#MalwareMustDie! Kelihos Affiliated .COM Payload D... Aug 6th, 13 Never 112 None -
#MalwareMustDie - UPDATE: Tango status of RunForre... Aug 6th, 13 Never 176 PHP -
#MawareMustDie Kelihos IP Milked in UNIX Aug 5th, 13 Never 172 None -
#MalwareMustDie- #Kelihos .RU domains Status Today Aug 5th, 13 Never 180 None -
#MalwareMustDie! #Kelihos NS Spreader Aug 5th, 13 Never 110 None -
#MMD #UPDATE: Additional Kelihos Payload URL 100 d... Aug 2nd, 13 Never 361 PHP -
#malwareMustDie! Credential slurp by trojan/PWS/ F... Aug 2nd, 13 Never 311 None -
#MalwareMustDie! REproduction redirector to Glazuk... Aug 1st, 13 Never 318 HTML -
#MalwareMustDie! FINAL Hexed decoded redirector to... Aug 1st, 13 Never 243 PHP -
#MalwareMustDie! Hexed DEcodeD code to Glazukov EK Aug 1st, 13 Never 231 PHP -
#MalwareMustDie! Hexed code of injection code to G... Aug 1st, 13 Never 157 None -
#MalwareMustDie! The POC lsit of ALIVE Zbot Jul 30th, 13 Never 616 None -
#MalwareMustDie! New form of Neutrino EK landing p... Jul 26th, 13 Never 447 JavaScript -
Exploit Kit JNLP Calls + Cookie Check + Java ver. ... Jul 26th, 13 Never 215 None -
Suspected Kelihos ALive domain IP Addresses (Addit... Jul 25th, 13 Never 254 None -
#MalwareMustDie! #ALERT: Kelihos IP & Domains ... Jul 19th, 13 Never 241 None -
#MalwareMustDie! Kelihos payload URL via RedKit EK Jul 16th, 13 Never 192 None -
*.MSI.COM got hacked, redirected to TDS to EK Jul 15th, 13 Never 232 None -
#MalwareMustDie! #RedKit Infection Campaign /[a-z]... Jul 13th, 13 Never 155 None -
#MalwareMustDie! ZERODAY of EXPLOIT KIT & EVIL... Jul 11th, 13 Never 721 None -
Today's Pony/zbot GO Jul 11th, 13 Never 188 None -
#MalwareMustDie! Kuluoz CnC list Jul 8th, 13 Never 541 None -
#MalwareMustDie! In war with Kuluoz network.. Jul 7th, 13 Never 2,695 None -
#MalwareMustDie! Kuluoz #Botnet CnC Unleashed (#Ta... Jul 4th, 13 Never 1,301 None -
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!
 
Top