# Copyright (c) 2014-2019 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://blog.malwarebytes.com/threat-analysis/2019/07/exploit-kits-summer-2019-review/
# Reference: https://otx.alienvault.com/pulse/5d40766ecabf3f345b3811db

http://212.109.198.22

# Reference: https://twitter.com/VK_Intel/status/1170955066355998721

http://188.225.38.30

# Reference: https://twitter.com/david_jursa/status/1171034657137319936

afgorc.xyz
djhjqg.xyz
drtest.xyz
yjomnb.xyz

# Reference: https://twitter.com/nao_sec/status/1171443035055390722

cuwygawipu.tk

# Reference: https://twitter.com/sans_isc/status/1172383709992931328
# Reference: https://isc.sans.edu/diary/25318

dhq.xyz
gtglax.xyz
mqtryi.xyz
ootsfq.xyz
yfmxng.xyz

# Reference: https://twitter.com/nao_sec/status/1173228978997354496

atztds17.world

# Reference: https://twitter.com/BroadAnalysis/status/804164835650965504
# Reference: https://broadanalysis.com/2016/11/30/rig-exploit-kit-via-the-eitest-delivers-cryptfile2-ransomware/

clickonlaramietoyota.com

# Reference: https://twitter.com/DynamicAnalysis/status/1182015863043567622
# Reference: https://pastebin.com/dunyKxnG

atztds177.world
atztds37.world
atztds775.world
btcseller.club
mybestdc.com
vapeshout.com
ggole.com
worplace.com
samsungt.com
wwwdailyforex.com
cryptaloot.pro
go2batch.com
capitalone.cm
fceacebook.com
gmai.com
googlew.com
grubhubc.com
whatsap.com
williams-soonoma.com
youyutbe.com

# Reference: https://twitter.com/adrian__luca/status/1148186673739685888

scrappycoco.ru

# Reference: https://twitter.com/tkanalyst/status/1187735439240773632

reversepin.pro

# Reference: https://twitter.com/tkanalyst/status/1188025346009919490

fiestagoal.pro
hipeoutset.pro

# Reference: https://twitter.com/tkanalyst/status/1189558049901465601

contactfiests.pro
speakerboxnectar.info
