Domains :
jcngtodnjlcr.it
mneqmmunsee.us
xdryy.uk
awrobhtsxpmcro.tf
boapooihhqkthvm.de
gfyttdu.ru
dpirlysijsbyy.pm
whetujmpw.pm
POSTs files to a webserver :
“POST /main.php HTTP/1.1
Host: 5.34.183.136
Sample : hxxp://bitmeyenkartusistanbul.com/system/logs/87h754/fXBvKHcBd.exe
Hosting Infos :
http://whois.domaintools.com/92.242.144.2