# Copyright (c) 2014-2021 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://staging.nsfocusglobal.com/wp-content/uploads/2018/10/NuggetPhantom-Analysis-Report-V4.1.pdf

154.48.241.199:15912
98.126.1.26:15912
98.126.1.27:15917
98.126.80.90:15912
98.126.80.91:15912

# Reference: https://www.virustotal.com/gui/file/942411f2fa054ec621023c6b9b4ad3b92372697da43eb38d2b661f80e19e6deb/behavior

/panel/mining/CPUMiner.files

# Reference: https://www.virustotal.com/gui/file/0ac003e6d8091544f7b055d7295ded55de94576729ab13925cde17eb2dd4ceab/detection

coin-pool.com
give-us-ltc.com

# Reference: https://www.virustotal.com/gui/file/c1d66b09938e5177a9406a8935f717cba888b06bc5ff74797e32c7b793d6a935/detection

give-us-btc.pw

# Reference: https://www.imperva.com/blog/python-cryptominer-botnet-quickly-adopts-latest-vulnerabilities/
# Reference: https://www.virustotal.com/gui/domain/gxbrowser.net/relations
# Reference: https://www.virustotal.com/gui/file/b83c10749362c18fe459f2a32fb7451ff8a593f5ab48366839ba618d5ecc24b2/detection
# Reference: https://www.virustotal.com/gui/file/d960520fff1e08ff2f38b36152a81716659a329944b26743344cd2bf783555c0/detection
# Reference: https://www.virustotal.com/gui/file/b8f93878f97814cf7d6b3e75d35f671e7c7243b68a68d69a74d9f487262b1210/detection
# Reference: https://www.virustotal.com/gui/file/c89fccc13cf8e6a2aa3bd89758a189270e50bf462cb4f3fe0e929aead3c60ac9/detection

185.10.68.175:6667
193.239.147.224:9050
193.239.147.224:6667
45.145.185.229:6667
45.145.185.83:6667
gxbrowser.net

# Reference: https://www.virustotal.com/gui/domain/give-us-btc.biz/relations
# Reference: https://www.virustotal.com/gui/file/8678f395fb9ae84d495c669f056f8226d9b3dca85040e65d35fa4511f1ce48b8/detection
# Reference: https://www.virustotal.com/gui/file/ecb40d340aee4666b7c3c2a0d1bbbcdcd9a92c578b15ba9dcce3bdabb3d528b6/detection
# Reference: https://www.virustotal.com/gui/file/e91b5ee9a6130afad7dfe64e024b8bffcaf39079b17937c78e6b262bf5fc7442/detection

162.211.228.130:3333
188.40.65.132:3333
213.239.198.109:3333
give-us-btc.biz

# Reference: https://s3.amazonaws.com/snort-org/www/rules/community/community-rules.tar.gz
# Reference: https://snort-org-site.s3.amazonaws.com/production/release_files/files/000/012/156/original/snort3-community-rules.tar.gz

darxk.com