A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #27620  by unixfreaxjp
 Tue Jan 12, 2016 3:00 am
An incident report & analysis (MMD): http://blog.malwaremustdie.org/2016/01/ ... t-elf.html
The threat report (Akamai): https://www.stateoftheinternet.com/down ... per-R3.pdf
x32: https://www.virustotal.com/en/file/800f ... 452567332/
x64: https://www.virustotal.com/en/file/d4f6 ... 452567381/
Malware network:
Code: Select all
sk2.touchpadz,com (CNC)
stat.touchpadz,com(CNC)
bat.touchpadz,com(CNC)
pages.touchpadz.com (malware download server)
5.79.83.27 (CNC src IP)
37.139.47.183 (installer attacker src/bot)
62.76.41.190 (installer attacker src/bot)
62.76.186.235 (malware download server)

#MalwareMustDie
Attachments
7z/infected
(33.54 KiB) Downloaded 62 times