# Copyright (c) 2014-2026 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://twitter.com/ESETresearch/status/1410864752948043778
# Reference: https://twitter.com/ESETresearch/status/1410864779229548546
# Reference: https://www.welivesecurity.com/2022/09/14/you-never-walk-alone-sidewalk-backdoor-linux-variant/
# Reference: https://www.virustotal.com/gui/file/0bff46518b35ddfe37f4a7820286aab829d81f1480d9eeca5aaedc9ceda6724f/detection
# Reference: https://www.virustotal.com/gui/file/be97d7ae3b2d876f027d99d8d61dbca92513f4975336c2ebc26cf8a0839b67b6/detection

micosoft.ga
rec.micosoft.ga

# Reference: https://twitter.com/r3dbU7z/status/1635193842164195328
# Reference: https://www.virustotal.com/gui/file/8c67b6334dbb1b10977e14fb66feb21638278b488305c0c02253a5942cdcf9fb/detection

http://47.252.19.25

# Reference: https://www.fortinet.com/blog/threat-research/threat-actors-exploit-geoserver-vulnerability-cve-2024-36401
# Reference: https://otx.alienvault.com/pulse/66e0b0caffa8120f0871c74b
# Reference: https://www.virustotal.com/gui/file/ee01af830d1e0eb1e4405c151f798ba7b4eae44b5cafbfe3a21e677d38b91c86/detection

http://47.253.83.86
47.253.83.86:443
download765.online
systemupdatecdn.de
1.download765.online
secure.systemupdatecdn.de