findcopper.org (malware hosted in Latvia Odessa Hosting Service)

DNS Lookup
Host Name IP Address
finddamaged.org
finddamaged.org 86.55.211.249
findcopper.org
findcopper.org 91.200.242.17
findvoiceless.org
findvoiceless.org 91.200.242.87
Outgoing connection to remote server: finddamaged.org TCP port 80
Outgoing connection to remote server: findvoiceless.org TCP port 80
Outgoing connection to remote server: findcopper.org TCP port 80
Outgoing connection to remote server: findcopper.org TCP port 80
Outgoing connection to remote server: finddamaged.org TCP port 80
DNS Lookup
Host Name IP Address
finddamaged.org
finddamaged.org 86.55.211.249
findcopper.org
findcopper.org 91.200.242.17
Outgoing connection to remote server: finddamaged.org TCP port 80
Outgoing connection to remote server: findcopper.org TCP port 80

exe here :
http://91.193.192.90/exe/yam/yam.exe

infos about hosting:
http://whois.domaintools.com/91.193.192.90

Categories: Uncategorized