bootcamp4wealth.com (Ice 9 banking malware hosted by wiredtree.com)

By I_Post_Ur_Info, December 22, 2012

Resolved bootcamp4wealth.com to 173.199.181.60

Server: bootcamp4wealth.com
Gate file: bootcamp4wealth.com/wp-directory/images/config/adm/gate.php
Config file: bootcamp4wealth.com/wp-directory/images/config/config/index.php
Login page: bootcamp4wealth.com/wp-directory/images/config/adm/index.php?m=login

Anyone infected with this is safe for now as the owner hasn’t figured out that the bot and config dropper need the same key for it to work.

Hosting infos: http://whois.domaintools.com/173.199.181.60

Categories: Uncategorized

Tags: ice9

Previous postqwer.be (YZF ddos botnet hosted by metrabyte.co.th)

Next postrunescape-livestream.tv (Andromeda http botnet hosted by vmbox.co)

dreiansc.ws (Ice 9 banking malware hosted by vps.ua)

runawaswarm.ru (Ice 9 banking malware hosted by hc.ru)

florasister.com (Ice-9 banking malware hosted by neoweb.ru)