# Copyright (c) 2014-2019 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://blog.talosintelligence.com/2018/09/threat-roundup-0907-0914.html (Win.Dropper.Ponystealer-6680912-0)

www.3zci3b.info
www.841bifa.com
www.aditsachde.com
www.ayursanskar.biz
www.benthanh-toyota.com
www.bigmovephilly.com
www.casineuros.com
www.chfnik.com
www.chinaxzl.com
www.crstudents.net
www.custombusinessapps.net
www.cyn.ink
www.dk-drugs.com
www.donghairc.com
www.fattoupdates.date
www.femalesdress.com
www.fiveroot.com
www.float2fit.com
www.funnysworld.com
www.giftedaroundtheworld.com
www.globaltimbereurope.com
www.goedutravel.com
www.happyslider.com
www.ketones.info
www.luxuryconversion.com
www.mizukusahonpomeibi.com
www.mjkrol.com
www.oane4.win
www.planeggerstrasse.info
www.puptowngirl.net
www.qfs.ink
www.rabe-networks.com
www.redkoe-porno.info
www.reducetarian.biz
www.reviewhqs.com
www.revivemyappliance.com
www.rsstatic.com
www.scgcgg.com
www.schmidtatlanguage.com
www.selviproperty.com
www.sjckt888.com
www.studio51.style
www.suatusta.com
www.telegraphresidences.com
www.theadvancedcoach.com
www.theniftyfiftiesband.com
www.thienduonghoaviet.com
www.vdemg.info
www.verzuimverzekering.info
www.webbyen.com
www.xctljc.com
www.xn--fjqu42jgii.com
www.xn--vuqu93jrjhqkc.net
www.zjjdmd.com

# Reference: https://twitter.com/James_inthe_box/status/1044957343568388097
# Reference: https://pastebin.com/st49wnwB

onthethatsed.ru/d2/about.php
onthethatsed.ru/mlu/forum.php
tontheckcatan.ru/d2/about.php
tontheckcatan.ru/mlu/forum.php

# Reference: https://pastebin.com/bPV4gVVL

perranrowsin.com/d2/about.php
perranrowsin.com/mlu/forum.php
heundthetrec.ru/d2/about.php
heundthetrec.ru/mlu/forum.php
utteronhim.ru/d2/about.php
utteronhim.ru/mlu/forum.php

# Reference: https://app.cymon.io/report/AVy8uj-LEb4shFlhGDGG/68c37e5f81188f8f478b60b1b4a56fc366ee8aa15763104d49159e41ebe899c2

/po/asdfkuj.php

# Reference: https://blog.talosintelligence.com/2018/10/threat-roundup-1012-1019.html (Win.Malware.Tspy-6721070-0)
# Reference: https://www.virustotal.com/#/file/22ef53123754caa2ac3871eb01221c99482e4318b59a30c8f07b9525afae52bd/detection

myp0nysite.ru

# Reference: https://blog.talosintelligence.com/2019/03/threat-roundup-for-mar-01-to-mar-08.html (Win.Malware.Bypassuac-6876875-0)
# Reference: https://www.virustotal.com/#/file/019df18c50002faa5704c94a01896f745677cdc643adc48ae9257031c539f7a6/detection

aieov.com
5isohu.com

# Reference: https://twitter.com/dvk01uk/status/1088793739223539713

/aloze/gate.php

# Reference: https://twitter.com/dvk01uk/status/1088391460892880896

/erweryui/gate.php

# Reference: https://twitter.com/Racco42/status/1029986121286074369

/reforte/gate.php

# Reference: https://twitter.com/dvk01uk/status/1115576796848762880

smartcoonect.duckdns.org

# Reference: https://twitter.com/pancak3lullz/status/1119334013246873600

blurbgood.live
loadedrones.tk
ownday.live

# Reference: https://twitter.com/pancak3lullz/status/1092804207252525065

/lopty/gate.php

# Generic trails (heur)

/d2/about.php
/mlu/forum.php
