10
0
mirror of https://github.com/Gi7w0rm/MalwareConfigLists synced 2024-06-16 12:08:59 +00:00
Gi7w0rm-MalwareConfigLists/SmokeLoader/smoke_out_13_05_2023_DE.txt
2023-05-18 21:46:42 +02:00

75 lines
2.7 KiB
Plaintext

http://kingpirate.ru/tmp/
http://colisumy.com/dl/buildz.exe
https://cdn.discordapp.com/attachments/1082332577060356128/1087147141560012851/635965506.exe?raw
http://aek0aicifaloh1yo.com/
http://yic0oosaeiy7ahng.com/
http://209.250.254.249:3002/
http://respekt5567.com/downloads/toolspub1.exe
https://transfer.sh/get/t3c1nE/Arens.exe -> Loader connects to 77.91.77.6:80 (no payload) -> https://tria.ge/230516-pfkersag26/behavioral2
http://potunulit.org/
http://45.9.74.80/power.exe
http://wa5zu7sekai8xeih.com/
http://172.86.123.224:8000/builds
https://tradingneon.com/files/81.exe -> (Account suspended)
https://www.4sync.com/web/directDownload/yLIfzG1i/EwakEzLs.2f2f949ed1b7f55d5969d844127c9d5c
https://filebin.net/wd3v9sjjlohobzq8/5455.exe -> 9dc5308c66ea1b516a823a01b703d0d497313227237b765205e031237fe940f3.exe -> Quasar Rat (Botnet: Office04, C2: 217.196.96.37:5678)
https://cdn.discordapp.com/attachments/1069223617117814787/1069223713129635970/asdasdb.exe
https://cdn.discordapp.com/attachments/1091449028107051142/1094520407274569738/bildak.exe
http://hie7doodohpae4na.com/
https://transfer.sh/get/7Ux0pU/43432.exe -> RedLine (C2: 94.142.138.147:48665)
https://transfer.sh/get/oFBAuC/MavrodiBlack%202.exe ->
Get: http://t.me/cinoshibot -> (from Bio) Get: https://central-cee-doja.ru//antivm.php?id=1087 +
https://github.com/holdthismoney/icona/raw/main/version32.exe -> Some sort of Miner (Reliable BlueScreen on Win64 lul) +
https://github.com/MavrodiBlack/sturdy-potato/raw/main/MavrodiBlack.exe (Nice Locker/Ransomware. To get Decryption Key: @Imthepassword Group: "Jumper Hacks") + https://transfer.sh/get/L0fiUE/@MavrodiBlack_alice.exe -> RedLine (C2: 37.220.87.13:48790)
https://tradingneon.com/files/17.exe (Account suspended)
https://transfer.sh/V58Jw2/run.exe -> RedLine (C2: 176.123.9.85:16482)
https://transfer.sh/EocwQ5/build_230513_103126.exe -> PandaStealer -> https://tria.ge/230516-n64ewsaf66/behavioral2
http://host-file-host6.com/
https://github.com/Abraham3210/bitcoin/releases/download/New/2-1_2023-04-14_08-31.exe
https://nftsmean.com/pro2.exe
http://138.3.213.192/RKiDaNx.exe
https://bayfiles.com/v1HbA7q9zf/OriginalBuild_exe -> Corrupt Signature -> Raccoonv2 (C2: http://94.142.138.32)
https://transfer.sh/get/lBIYXx/635965506-2.exe -> Unidentified Stealer: https://tria.ge/230516-n7czbshf9v/static1
https://apnamachine.com/tmp/index.php
http://hugersi.com/dl/6523.exe
https://transfer.sh/get/VJPf5S/@reality_lolz_easy.exe -> RedLine (C2: 37.220.87.13:48790 )
http://95.214.27.98/file/lega.exe
https://cdn.discordapp.com/attachments/920726397322928168/1079835676448669768/qwfqwf.exe
http://hoh0aeghwugh2gie.com/
https://transfer.sh/get/9exO8N/@bad_gerl69_alice.zip -> RedLine (C2: 37.220.87.13:48790)