Avast WEBforum

Other => Viruses and worms => Topic started by: polonus on February 24, 2019, 10:26:53 PM

Title: Only two to detect?
Post by: polonus on February 24, 2019, 10:26:53 PM: Re: https://urlhaus.abuse.ch/url/144324/ Payload delivery:
2 detect here: https://www.virustotal.com/#/url/0d6468b6db6d7aca9396f163c5df1b70b81c74c079810eba33052a91e82d70b7/detection
https://www.virustotal.com/#/file/b320ac8685e99280438e5fc0ac3c11ae72654fbf4f6107ddd40c9e902a4de732/detection
Mirai bot malcode...
Also: https://www.virustotal.com/#/ip-address/142.93.135.109

See: https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=MTQyLjkzLjEzNS4xMDk6ODBgYltuc2BmfV1zdHkueDg2~enc (via wget)..
Netcraft risk 9 red out of 10: https://toolbar.netcraft.com/site_report?url=http://142.93.135.109:80/bins/frosty.x86
Read about this nightmarish backdoor: https://www.hackread.com/linux-mirai-trojan-a-ddos-nightmare/

polonus

SMF 2.0.18 | SMF © 2015, Simple Machines