# Copyright (c) 2014-2023 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Aliases: mystic stealer

# Reference: https://twitter.com/Yeti_Sec/status/1638537367567958016
# Reference: https://urlscan.io/result/535841c6-ea4a-4e8c-85b7-e19bd5ad68e5/

164.132.200.171:8005

# Reference: https://www.virustotal.com/gui/file/a4b5d7012c1a971c6c7d95de1b2027153d83527b1a2c62fa0fca7770a76fb99a/detection
# Reference: https://www.virustotal.com/gui/file/8eebef1167ba58681276502fdba907ce5f63d5bbbf68b887b2cc1b2dd4bbc177/detection
# Reference: https://www.virustotal.com/gui/file/4c5bbf836913bccd7d8a18ea3ac742057b14fc739b05502e74d389e36fa829bb/detection
# Reference: https://www.virustotal.com/gui/file/47439044a81b96be0bb34e544da881a393a30f0272616f52f54405b4bf288c7c/detection
# Reference: https://www.virustotal.com/gui/file/39d3532ffb7565aa79bd6ae6f510ecc7ac29ed7cd0a98a7b948c10162c5c25c0/detection

164.132.200.171:15555

# Reference: https://www.virustotal.com/gui/file/b37ab91f8163344b775edc9a4378d44fdfddbac3b0cd3fceaf670f79b06bc362/detection

164.132.200.171:15556
727.gra.abcvg.ovh

# Reference: https://twitter.com/0xrb/status/1653364901384003585

http://135.181.47.95
http://185.252.179.18
http://188.40.116.251
http://23.163.0.179
http://43.154.7.225
http://95.216.32.74

# Reference: https://twitter.com/0xrb/status/1653723946892644355

94.23.26.20:8005
http://116.202.233.49
http://159.65.229.149
http://94.130.165.48

# Reference: https://www.virustotal.com/gui/domain/africahelp.org/detection
# Reference: https://urlscan.io/search/#hash%3Afaf14cca1e17a7676c15266507219e3319943b19e21287015b9c968f0244fde2

africahelp.org

# Reference: https://twitter.com/connectraek/status/1656232673243983873

bhandarapolice.org
cwbusinesswomen.org
gujaratstudy.in
hanoigarden.net
marisolblooms.com
spotifyapkpremium.net
wowvillas.in
