Resolved notify.mpa-a.com to 95.163.76.59
Server: notify.mpa-a.com
Config file: notify.mpa-a.com/msupd6.bin
Gate file: notify.mpa-a.com/index.php
Hosting infos: http://whois.domaintools.com/95.163.76.59
Categories: Uncategorized
Resolved notify.mpa-a.com to 95.163.76.59
Server: notify.mpa-a.com
Config file: notify.mpa-a.com/msupd6.bin
Gate file: notify.mpa-a.com/index.php
Hosting infos: http://whois.domaintools.com/95.163.76.59
Anonymous - April 1, 2013 at 7:26 pm
Here is a user from hf, betabot i believe, utah and zero8 hxxp://skidhorse.info/uploads/695216768.System.exe
Anonymous - April 1, 2013 at 9:40 pm
This one is Zeus.
Pig - April 1, 2013 at 10:05 pm
thank you for submiting the sample 🙂
Pig - April 1, 2013 at 10:14 pm
looks like rat :
hfnetwire.no-ip.info DNS_TYPE_A 98.202.215.153
98.202.215.153:3360