Exposed Botnets

Wednesday, September 14, 2011

UmbraLoader Hosted in Russian Federation

Criminal's AIM Screen name: kenunloaded

Panel:
http://193.107.16.134/umbra/Panel/bot.php
http://193.107.16.134/umbra/Panel/

Virus Scan:
http://www.virustotal.com/file-scan/report.html?id=a47b0bd0d9bbd556bf21ada7f93f4018840b1d13357c4cc4a74e1b3a525dbd1b-1316067901

Analysis:
http://anubis.iseclab.org/?action=result&task_id=112aa04a16b3ba5d4b1afdf650ebd2f6f
http://www.threatexpert.com/report.aspx?md5=75e415e752846645ae89b9a4ea1180a6

Hosted with:
http://www.ideal-solution.org/
http://whois.domaintools.com/193.107.16.134

Bot(for further analysis):
http://www.mediafire.com/?xj1t1r7okqzjae7
http://www.multiupload.com/O65NGRDB9P

Posted by Tyler at 11:35 PM

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

1 comment:

AnonymousJune 13, 2012 at 12:13 PM
8.23.224.90
8.23.224.90/gate

Spyeye i think....
ReplyDelete
Replies

Older Post Home

Subscribe to: Post Comments (Atom)

Popular Posts

KCA's Botnet
UmbraLoader Hosted in Russian Federation
BossesLoader + Gbot
Some hf heckers autumn http botnet
Zues hosted in Lithuania Siauliai Splius Uab

Blog Archive

▼ 2011 (6)
- ▼ 09/11 - 09/18 (6)

About Me

Tyler: I used to do big hecks, Now I am helping stop them.

View my complete profile

Followers

Total Pageviews

Awesome Inc. theme. Powered by Blogger.