Mikhail Kasimov
@500mk500
Malicious traffic detection system -- @maltrail -- co-developer
Maltrail Demo Page: https://t.co/eimXdZvjWo
Maltrail FAQ: https://t.co/Kne9lewPHT
ID:4820426207
http://maltrail.github.io 17-01-2016 07:45:52
5,6K Tweets
2,8K Followers
549 Following
Would be brave to extend IOCs list a little bit:
hXXp://195.123.218.28
hXXp://195.123.218.36
hXXp://195.123.218.37
hXXp://195.123.218.40
hXXp://195.123.218.46
#KoiLoader / #KoiStealer
Detection: github.com/stamparm/maltr…
Taking chlmpstatiic\.com for Validin #lookalike tool, some other not pretty good detected #Magecart -related domains were found:
chimpstatiic[.]com
g-staticxs[.]com (detected by Sansec )
gstatics[.]org
sucuriwebtrack[.]org (impers Sucuri Security )
github.com/stamparm/maltr…
Ref: reversinglabs.com/blog/suspiciou… (ReversingLabs )
Connection: 117.41.187[.]235:60000
Detection: github.com/stamparm/maltr…
TF: threatfox.abuse.ch/ioc/1249506/
#SqzrFramework480