Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

From VT: A new seed of Dircrypt? #12

Open
suqitian opened this Issue Sep 12, 2016 · 2 comments

Comments

Projects
None yet
2 participants
@suqitian
Copy link
Member

suqitian commented Sep 12, 2016

  • MD5
    8dce388365ba4ddd516a744c677d41e9
  • Domains
    aecsztodxcauezvwv.com
    agqkgrttm.com
    dkpcztxjhlmgppzrd.com
    erajimtnghuqfdgnhj.com
    ftxtknedryvgywsmchm.com
    gcaocxscewiemvhggl.com
    gxcmyvpmuuxoluzdenhr.com
    hbyxpqjkm.com
    hrbkzpoytss.com
    injhsmedkkvjktwgmz.com
    iufmmhtfuglkewvyrira.com
    jzyskusvwwpnykoi.com
    khtpzsuzpbaforbsqoqt.com
    lvbikxjfrzrofxzn.com
    ngntxyqih.com
    ntaeqknhxehkadis.com
    pbxfdvizihgcv.com
    qmeuxytpxbf.com
    xbrsttwgaomaxapjpa.com
    zwmobkxpbcwddexzh.com
  • Details in VT
    File has been identified by at least ten Antiviruses on VirusTotal as malicious, and one of the keywords is "Dircrypt".
@baderj

This comment has been minimized.

Copy link

baderj commented May 3, 2018

This is indeed DirCrypt with Seed 0xF6A84A56 and 50 generated domains . Here is the full list

roxgaffvgdoussasodp.com
fmmpcvptedjj.com
kcioltyxt.com
uoneiidbgd.com
cgisutadrreeofer.com
cdvdzllc.com
qmiovfqxfottkhvxnbh.com
cosehduitwhveyawpvb.com
rstjohxvafpdil.com
ktnpeigebccttk.com
owhcvpphjlhmmhsu.com
hsysmmsyrqigvk.com
xiwizgqqxsxiufcqog.com
bbtflrghufwutxujka.com
srivztiulphfxd.com
poinakvh.com
yjghnpukyqy.com
zjnzfctktonlspuanzlr.com
qszjxjem.com
iedzvuyxzihzdwccayx.com
gznvxlfppo.com
adhwcthf.com
halmafqsuibsddqls.com
ppwktofoh.com
evbjhfhddsqejovzfjx.com
eugrbfjvkzx.com
pmuyficrjmtartnzeouj.com
vfcnugadnuhaoebzwaq.com
khcagvgdllhfjqn.com
siamgggtevghgi.com
erajimtnghuqfdgnhj.com
iufmmhtfuglkewvyrira.com
injhsmedkkvjktwgmz.com
ntaeqknhxehkadis.com
ngntxyqih.com
jzyskusvwwpnykoi.com
khtpzsuzpbaforbsqoqt.com
dkpcztxjhlmgppzrd.com
xbrsttwgaomaxapjpa.com
lvbikxjfrzrofxzn.com
hbyxpqjkm.com
ftxtknedryvgywsmchm.com
pbxfdvizihgcv.com
hrbkzpoytss.com
gcaocxscewiemvhggl.com
aecsztodxcauezvwv.com
agqkgrttm.com
qmeuxytpxbf.com
gxcmyvpmuuxoluzdenhr.com
zwmobkxpbcwddexzh.com
@suqitian

This comment has been minimized.

Copy link
Member Author

suqitian commented May 4, 2018

Thanks a lot.
The seed has been added to our Opendata!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.