# Copyright (c) 2014-2023 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://www.fireeye.com/blog/threat-research/2014/09/forced-to-adapt-xslcmd-backdoor-now-on-os-x.html

allshell.net
attoo1s.com
kasparsky.net
kocrmicrosoft.com
microsoft.org.tw
microsoftdomainadmin.com
microsoftsp3.com
softwareupdatevmware.com
windowsnine.net
cdngoogle.com
cisco-inc.net
mremote.biz
officescan.biz
oprea.biz
battle.com.tw
diablo-iii.mobi
microsoftupdate.ws
msftncsl.com
square-enix.us
updatamicrosoft.com
powershell.com.tw
gefacebook.com
attoo1s.com
msnupdate.bz
googlemapsoftware.com