# Copyright (c) 2014-2021 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://www.welivesecurity.com/2019/10/03/casbaneiro-trojan-dangerous-cooking/
# Reference: https://otx.alienvault.com/pulse/5d95e1d8a958c288f7e3d6ed

4d9p5678.myvnc.com
agosto2019.servepics.com
hostsize.sytes.net
noturnis.zapto.org
seradessavez.ddns.net

# Reference: https://twitter.com/JAMESWT_MHT/status/1245383637442482178

newlife2020.club
vqz8.gotdns.ch

# Reference: https://twitter.com/JAMESWT_MHT/status/1245399620945092609

jkue.myftp.biz

# Reference: https://twitter.com/JAMESWT_MHT/status/1268811438707159040

nhoquemassa.com

# Reference: https://twitter.com/JAMESWT_MHT/status/1272427444486766592
# Reference: https://app.any.run/tasks/7ac99b76-0ac3-4764-bfa3-e35925ecb39b/

albumdepremios.com.br
hostmeusite.ddns.net

# Reference: https://twitter.com/JAMESWT_MHT/status/1277476249988972544
# Reference: https://app.any.run/tasks/00594f1b-f778-49ea-bfc5-2a0853a41347/

apkelites10.com
baza.alta-bars.ru

# Reference: https://twitter.com/ffforward/status/1329507229066801153
# Reference: https://www.virustotal.com/gui/ip-address/128.199.139.227/relations
# Reference: https://pastebin.com/gNgD4PS2

09dfwss6g1v73sya.online
2xo0uaqv4cqds331mart.online
3n1ujw621vaxpro.online
4atcj6ygql4l.online
4yw2twoy438df9qt.online
6c48ax07dy25hvu0hub.online
ah0nm2v13mhl8ynn.online
cevda3jvv5oz1t37.online
fd8nvvlufung.website
k6ue95v1ca2r.online
l155vcram2hl6ws0.online
mpy8n37wvwu2.website
mpy8n37wvwu2now.online
p77x09sqwx37j1l2.online
udndtiho0q7r.online
v6pa59086808a28mpro.online
x50zbqev4po5.online
x6vl9710f400g7alstar.online
yuphsa6qwtg5.online
z5im1ou9o480se02pro.online
zfi8ny6yi30s.website
zfi8ny6yi30shub.online

# Reference: https://www.virustotal.com/gui/file/be1ff9ea0cd1d99838eedabc9d4faba081d1fbf9c7c94d2575b70c64ba2298ed/detection

chooseanother.com

# Reference: https://twitter.com/ESETresearch/status/1367456126195924993
# Reference: https://twitter.com/ESETresearch/status/1367456135389851648

http://178.32.119.184/upa/2302
http://46.4.141.206a21/ld/index.php
a8b.site
cnn2602.gotdns.ch
fiscal.canadaeast.cloudapp.azure.com

# Generic

/J8v0x5a3a6v4x0BTCsc/
