# Copyright (c) 2014-2023 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://twitter.com/noexceptcpp/status/1626531709373104128
# Reference: https://labs.k7computing.com/index.php/goatrat-attacks-automated-payment-systems/
# Reference: https://www.virustotal.com/gui/ip-address/200.9.155.188/relations
# Reference: https://www.virustotal.com/gui/file/45d5b2fa6e5a0674485896769fd10be36a6b8bb6274d3828cf5067e68029f9d8/detection

191.101.131.50:3008
yakuzacheckers.com
goatrat.com
api.goatrat.com
srv.yakuzacheckers.com
vnc.goatrat.com

# Reference: https://twitter.com/malwrhunterteam/status/1636140226782326784
# Reference: https://www.virustotal.com/gui/file/de5c7f799b80f0eb54c5397b2ec0ff08d0a9a4a92feaa290287a34241cf9d0f7/detection

aaa0.surge.sh

# Reference: https://www.virustotal.com/gui/domain/theworldisfantasy.online/relations
# Reference: https://www.virustotal.com/gui/file/6d973486be33192793e3c96510736d6121034330525119985b24b20675d1a28a/detection

theworldisfantasy.online
api.theworldisfantasy.online
apks.theworldisfantasy.online