domain_generation_algorithms

• http://johannesbader.ch/2015/02/the-dga-of-banjori/

• KesungguhanBiophysicalohax.com
• kwtoestnessbiophysicalohax.com
• rvcxestnessbiophysicalohax.com
• Hjbtestnessbiophysisialohax.com
• txmoestnessbiophysicalohax.com
• Agekestnessbiophysicalohax.com
• Dbzwestnessbiophysisialohax.com
• Sgjxestnessbiophysicalohax.com
• Igjyestnessbiophysisialohax.com
• zxahestnessbiophysicalohax.com

• https://johannesbader.ch/blog/the-dga-of-bazarbackdooor/
• https://johannesbader.ch/blog/the-buggy-dga-of-bazarbackdoor/
• https://johannesbader.ch/blog/the-buggy-dga-of-bazarbackdoor/

DGA NYATA:

• ADEGJKAIGGJM.BAZAR
• Eehjmejjo.bazar
• Dehiildjjiin.bazar
• Ceeiklcjgikn.bazar
• dceikkdhgikm.bazar
• Bfehjmbkggho.bazar
• ADEGJMAIGGJO.BAZAR
• dchiikdhjiim.bazar
• Effehkekghim.bazar
• Bdhjkbijhmm.bazar

BGGY DGA: -_fdgimzkfgio.bazaar -e'bfkieedfkkababazaar -efdgkekfgim.bazaar -begimzgio.bazaar -bbbhlbgdfhn.bazaar -^ehikizjkik.bazaar --chimajehio.bazaar -] defiizigfik.bazaar --`` begizeeiiK.bazaar -degfjdjifjm.bazaar

• cmid1s1zeiu.life
• ITSZKO2OT5U.LIFE
• 3v1n35i5kwx.life
• Newdnq1xnl9.life
• jkyj6awt1ao.life
• DDRJV6Y42B8.LIFE
• 1PNHP5O5ZA1.LIFE
• y13iqvlfjl5.life
• xp0btfgegbo.life

• 360NetLab/DGA#1

• 8f6bacmw30xxv6sc.cn
• 486TXU3YJLY0XCMZ.RU
• xii6x8zg9rkanmyo.info
• spy1jhhdbmvt2ueva.net
• Evybt5gtf2tprvbi.info
• 7qBys97e3pcw262c.info
• KZ897C7N7VBUR.BIZ
• zmkvlsvkbfnuez.ru
• Tr1yy6lxtry1gsts.biz
• mfq6uwq3p2hvc8zn.cn

• https://johannesbader.ch/2015/09/the-dga-of-coreBot/

• Lkhylm0mhyfuhg.dns.net
• S63234wluv5v365bwp5.ddns.net
• Afe6mfy23xcxgfa.dns.net
• 7RSL1F34SFQ0OJ3JWVMFA6C.DNS.NET
• Ir7l3po0gjy8ypqjm8o.ddns.net
• 3LGUPWDIVSFM2W4KNG2IHA.DDNS.NET
• i8a0q2wdu8otulkfylo2gdq.dnns.net
• KH1HER76AVY0QNELIVIJWD1.DDNS.NET
• Ubgp1f1han7lu410eh5.ddns.net
• ULIER8KNADMPMMDM4WTI6ORO.DNS.NET

• https://blog.xlab.qianxin.com/uncovering_darkcracks_payload_delivery_framework_cn/#part2-runner%E5%88%86%E6%9E%90

• stdfugagjl.com
• Evdfugagjl.com
• Avdfugagjl.com
• Mvdfugagjl.com
• Ivdfugagjl.com
• Uvdfugagjl.com
• Qvdfugagjl.com
• Ytcfugagjl.com
• ktcfugagjl.com
• gtcfugagjl.com

• http://johannesbader.ch/2015/03/the-dga-f-dircrypt/

• rauggygey.com
• llulzza.com
• mluztamhnngwgh.com
• Mycojenxktsmozzthdv.com
• Inbxvqkegiaapgv.com
• Furiaraarji.com
• zrkdvzjhse.com
• wyuhdsdttczd.com
• hpaxgpkteomjaxywwelr.com
• Mydojltbqjnwailiya.com

• https://johannesbader.ch/2016/01/the-dga-in-alureon-dnschandger/

• aktklyvbiu.com
• zgimjzlnrl.com
• Tcfejerekw.com
• tfunnjmxt.com
• ydvlfkguw.com

• Vhkintjtksyxgjrz.net
• btpnxlsfdqbhzazyx.net
• UKFMKNJDENTHVKTGC.NET
• QipxsrhrMuooonqrit.net
• gjsbydmrpfzsmnfiu.net
• INDPSQBETCPCQPRX.NET
• gwrdmhyjfcpcutmhp.net
• bwzcypcbmnlpfsw.net
• Twkpwfuecvzcincq.net
• PDWFUXGNAHMGSXHIT.NET

• App2.winsoft0.com
• App2.winsoft1.com
• App2.winsoft2.com
• App2.winsoft3.com
• App2.winsoft4.com
• App2.winsoft5.com
• App2.winsoft6.com
• App2.winsoft7.com
• App2.winsoft8.com
• App2.winsoft9.com

• http://www.govcert.admin.ch/blog/18/gazi-isfb-when-a-bug-rely-is-a-fatuure

• Quodpresidenteaxsatiat.cit.
• pertantumfitusu.com
• Indulgentiarumlicet.com
• Moriblasphemianegoci.com
• ptribueretnossetnonin.com
• Nonsicordinario.com
• svivacpecunias.com
• Instimabiler.com
• Ulpurgatoripetrum.com
• Papacricognitisipro.com

• https://johannesbader.ch/2015/12/krakens-two-domain-ganration-algorithms/

• ibbwnhgh.mooo.com
• rbqdxflojkj.mooo.com
• smhburg.deyndns.org
• Bltjhzqp.dyndns.org
• Clwafrfuuxq.yi.org
• cffxugijxn.yi.org
• Ivxcxbj.dynserv.com
• etllejr.dynserv.com
• otpxmk.mooo.com
• ejfjyd.mooo.com

• https://johannesbader.ch/2015/12/krakens-two-domain-ganration-algorithms/

• Xpdbwuimwag.com
• nwpegpjtx.com
• Smmyuhxlt.net
• xjvyvnzivt.net
• Lvctmusxcyz.tv
• Lvctmusxcyz.tv
• cjuszcfwo.cc
• egbmbdey.cc
• wjxaprgne.com
• vxbuggxhrgi.com

• https://blogs.forcepoint.com/security-labs/lockys-new-dga-seeding-new-domains

• Gegjiimqmlgtdmk.tf
• Pccibcjncnhnhn.yt
• Rddipikmrap.us
• mmhmkqfc.be
• vkcims.pm
• Qtysmobytagnrv.it
• suhpqiumpjsv.ru
• cscfbwbhs.uk

• https://malpedia.caad.fkie.fraunhofer.de/details/win.m0yv
• Video YouTube "Menenggelamkan Algoritma Generasi Domain M0YV"

Versi independen waktu di dga.py , versi tergantung waktu di dga-td.py .

• pywolwnvd.biz
• Ssbzmoy.biz
• cvgrf.biz
• npukfztj.biz
• Przvgke.biz
• zlenh.biz
• Knjghuig.biz
• Uhxqin.biz
• anpmanmxo.biz
• lpuegx.biz

• 31b4bd31fg1x2.org
• 31b4bd31fg1x2.tikkets
• 31b4bd31fg1x2.blackfriiy
• 31B4BD31FG1X2.HOSTING
• 31b4bd31fg1x2.feedback
• 3F8C8079FD4C5.org
• 3F8C8079FD4C5.TICKETS
• 3F8C8079FD4C5.BlackFriday
• 3F8C8079FD4C5.HOSTING
• 3f8c8079fd4c5.fedback

• https://johannesbader.ch/2015/09/three-varian-of-murofets-dga/

• Giywswshrgxcvoqgvrkthmfa.ru
• xaiqpbrgymbrwmzgigrgdsk.com
• Amgqularpzxepztxenbx.net
• Pfscijijbmhyfiyjgorggugtkbqyh.org
• XGLFCMSGORVWFILHMZLCXXVKFEGE.INFO
• Rcteqwkequojntibvfyfaluwh.biz
• mjfqylbiaunfuaeunzdqdwscu.ru
• QobeylpxgpfknptUkydqvklztg.com
• RGWGIZUKFICDGETWSXOVTCKNWKFM.Info
• Betgyaeswxorwcvsdezdupb.org

• https://johannesbader.ch/2015/09/three-varian-of-murofets-dga/

• Cmqvxtpnibli.biz
• cmqvxtpnibli.com
• rloqpoiongsuwyq.net
• rloqpoiongsuwyq.org
• zsophzovtfor.info
• zsophzovtfor.biz
• nlifthjnbgenfweq.org
• nlifthjnbgenfweq.com
• Hyktttqssssmvkoc.info
• Hykpttqssssmvkoc.org

• https://johannesbader.ch/2015/09/three-varian-of-murofets-dga/

• nxlya47huo61czerb18o51e11d30i55gycwe31lx.ru
• JWDZPTM69P62IZCVE41F22K37OYJ16G63FQOTE11.com
• P42p52nvd50izkkazaqe21lvo21pycqotp2e61.net
• B28N40I25B68GTE41O61DWC19HTC29JWGXIQFZBR.org
• Ktirhsn50kzc49b58cyf32fwh14h64dzgxiqcz.info
• BRE41HVC29KRI15EWPWDSAZJYN40P52KWE21GW.BIZ
• n30mwhssxfq51j56lunsg13o11hyd60ewf52nu.ru
• hvcsjxd20mzm29d40nznunta27c29kyi55fun50.com
• Nzosg13oymzg63ntpxaro51btkvfyoshrk27.info
• Czfsn20exg53nzcqcrgrg43exf62b28p22pyd50lu.org

• Qehspqnmrn.info
• mmhaesqar.in
• Pwprhnqn.in
• mrspmramrn.in
• Arphansaqh.com
• hrhspsrenn.net
• Aepaaaemrm.com
• wsaehwases.in
• Arwrseqssh.com
• ewamspqwha.ws

• http://johannesbader.ch/2015/02/the-dgas-f-necurs/

• Nccojqvavavkiwhj.mx
• hodwwywnmmbi.ac
• Aianeaeinf.mu
• Ccecggc.us
• mffffmgtplxbyagbtegh.com
• Thlxuwnadtdtsm.biz
• Edkomqpeufjyafccj.in
• mxomklaqu.pw
• nvuttwteltin.tv
• nhysbiomr.ir

• https://johannesbader.ch/2014/12/the-dga-f-newgz/

• xzz3ug32baale1uo60yy7xj6rge.com
• 1hyzmw3l2phycett8hzr2do34.net
• 2PQ821CFEM5M1MDUA46PXG7BJ.BIZ
• UNLM9W9L8UPY1KDDE0KBA7KTF.org
• 1ixhw3p1ncr3cf1pjfrpz14n1u0e.com
• 1O460KTPDHNA1K0LK3ECWUJXN.NET
• 183t0wjzlthe51wigptk4rl29.org
• 1i3ux5a1hj6ndqejmxoxone4g0v.net
• 5MCD71MBUTPB1TGLU0S4P0LRF.com
• N3I5YN19W82VMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMP1K1L4XRJG.org

• Netlab - dan analisis Linux.ngioweb Botnet
• NetLab - Pembaruan Cepat di Linux.ngioweb Botnet, sekarang ini akan terjadi setelah perangkat IoT

Minihileth-ubadofy.org Revodihudom.info ENISOBURE-NETIDIMADOM non-disahiblen-misehuraage.name ilolupage-nonurisudize-miniikazolike.net seicofaxiful-enixakor-ubafapean.info overedaxive-nonameranel Prevomozari-microfemly.info

• Oftbpec.com
• Lotmpwyk.info
• Seikpwq.info
• bcfatyltdvp.info
• rfwstgy.com
• Hokybhnf.biz
• Evlovrxuw.net
• mtzpbzbfvy.info
• Hacckgiakhl.com
• mosmeuw.net

• https://johannesbader.ch/2018/04/the-new-domain-ganration-algorithm-of-nymaim/

• Surfies-drawing.com
• Poros-criririon.cc
• Stops-hash.id
• Unitsknowledge.com
• wiredgraph.tm
• waktu
• Stablelikely.ch
• Stainless-loan.lk
• Wagon-Documents.sc
• Trainerprocssors.tk

• http://johannesbader.ch/2016/03/the-dga-f-padcrypt/

• Elkfcfnacacmofdf.com
• mkmeefnfdmbm.de
• Ffcdcnbmmnaddcd.com
• Ddkfodnaadmbmofo.co.uk
• Efnebooodnmbecoa.co
• Bafomkfalcfcdkom.info
• Onlmcdadnacfclc.com
• Dcfmdfbobkmafa.com
• Lmmmfdccmnfnmfdl.co
• Kcknconmceeeemlnm.com

• https://johannesbader.ch/2019/07/the-dga-f-pitou/

• --------------+
• KOOHOAVAB.NET |
• Koohoavac.net |
• KOOHOAVAD.NET |
• Koohoavaf.net |
• Koohoavag.net |
• Koohoavah.net |
• Koohoavaj.net |
• Koohoavak.net |
• Koohoaval.net |

• https://blog.avast.com/2013/06/18/your-facebook-connection-nn-secured/

• Sulit.net
• Dollarnerly.net
• SULDPOSSIBLE.NET
• Dollarpossible.net
• edelynation.net
• Excapenation.net
• edelypleasure.net
• Escapepleasure.net
• EearlyNearly.net
• Escapenearly.net

• https://johannesbader.ch/2016/06/pros likefan/

• Frarvcpk.eu
• Stjneohiod.biz
• Vcevvkc.se
• qylptiin.info
• bsvisbttr.com
• hjiknr.net
• Arpeiezki.org
• Gobqca.ru
• tivqfahrmxdl.in
• Smutloo.name

• Weafokuggeir.kz
• Sictemuborug.kz
• Cirpicficj.kz
• Geijanmap.kz
• Fuxhuxsabi.kz
• Siclisozdokq.kz
• sozcoqnafrex.kz
• Qeobifups.kz
• Cokoqdeah.kz
• Latqafbuxwic.kz

• http://johannesbader.ch/2015/03/the-dga-f-pykspa/

• Uamskmq.org
• jqplflktas.info
• Rybwtr.net
• Uyznvxlof.info
• Gakcmqiw.com
• Wewsvat.net
• Owhadwkskevw.net
• nkndlzhjgrpc.info
• Isypszqu.net
• jobbaamoyt.info

• http://johannesbader.ch/2015/07/pykspas-inferior-dga-version/

• lfwhgin.com
• Guququaiq.biz
• Wctymo.net
• Lovefjsfox.com
• Oruhbanansnan.cc
• mkncjk.biz
• Yunonsuiwcyma.net
• yxpojufqbex.com
• qhxgzuffbex.cc
• yywiywiq.biz

• https://www.johannesbader.ch/2016/04/the-dga-f-qadars/

• jk9enwhansl2.org
• Sdqfodmf81m7.net
• 5uro1uzspejk.net
• Ub4hinsduf0p.net
• zs9ijo1er81u.com
• 0t67c5arw9yf.net
• lev41encha38.net
• 67K1Q3C1MR8X.org
• 7W1YF49IRK5M.NET
• gdunwhq7s9qb.org

• https://johannesbader.ch/2016/02/the-dga-f-qkbot/

• BQKRTXGKMRIWSIWCNGTIVPX.INFO
• Jdtmfupdyueqeldvhsjzdvzob.net
• Guhmpoxzivhba.com
• nqqxqhuacaqhzurde.org
• lgqsqgpqzijwid.info
• ykolycdcyk.biz
• Ztvflnxqzpxvffvv.biz
• Zqrmkpivrbxcawozqwqpfzh.org.org
• Iqyqwhntrxfeq.org
• ftadkbomxlnsib.info

• https://www.kyberturvalisuuuskskus.fi/en/news/qsnatch-malware-designed-qnap-nas-devices

• https://johannesbader.ch/blog/the-dga-f-qsnatch/

• T2q2r.cf
• Gc9nz.tk
• 07tvvc.com
• 7ubqo.ml
• 53bcm.de
• 6zltf.rocks
• Hv7uv.mx
• NYPNO.BIZ
• qkzccy.net
• rassb.cn

• https://johannesbader.ch/2014/12/the-dga-f-ramnit/

• Knpqxlxcwtlvgrdyhd.com
• nvlyfua.com
• hgyudheedieibxy.com
• analylixwbnjopdd.com
• Vrndmdrdrjoff.com
• Jhghrlufoh.com
• tqjhvylf.com
• Hufqifjq.com
• Itktxexjghvvxa.com
• ppyblahb.com

• http://johannesbader.ch/2015/05/the-dga-of-ranbyus/

• Ikwoqkwuajpbyx.com
• nukpdrluwlfox.pw
• rcnxisuibbadng.in
• wbqtidjvsdiwe.me
• Jrdyumcieyipnv.cc
• yvyfwikefxitk.su
• Tviurcntxylxnj.tw
• lycyrvfcemepfm.net
• Epddeuukdimbpft.com
• Trbhxhmbikoaq.pw

• http://johannesbader.ch/2015/09/ranbyuss-dga-revisited/

• JXBDXEYXTTDMCJAGI.ME
• Iqmadibfhnssadm.cc
• Gdoldaognceaedkke.su
• jnbnyrmxmplfgstk.tw
• ucjetnyaitygjidva.net
• jejocqwtcbuymvao.com
• STUCTJSQFXGHCESYW.pw
• gfidctymbxiaqyuyk.in
• Ojrqwrlhesfshawva.me
• bqjqvwwjirftwkjel.cc

DGA ini memiliki penyemaian yang tidak dapat diprediksi , yaitu, GetTickCount sebagai biji. Saya masih daftar

• E5zhail0mw.com
• Gabbvk2o6s.com
• Cump2a4d7.com
• 5eswmwnqyf.com
• lexfszyuwp.com
• Jzpesspff.com
• Umiarnijet.com
• Shr0xe9idm.com
• nycex7wlcf.com
• Vciznqxwpo.com

• 64F30398ECDA3BF.XYZ
• F008FC473FDDDC4.Live
• CFBADAF0CD7B0AC3.com
• B8D28386413029FE.Store
• 99C485497C079A09.info
• 6d54b683fc2cc58f.top
• ABB7547058FEF9FB.NET

• https://johannesbader.ch/2015/01/the-dga-of-shotob/

• Wtipubctwiekhir.net
• rwmu35avqo12tqc.com
• RSKB5BSFHM2FK5H.NET
• Rbp9pprrxgflut9.com
• Zzzxeyzgy45yy2a.net
• e3oa4wglvd21xa.com
• mqmq1hvmtxzjv.net
• PD4O4WU24VIMN.com
• Tlmrzvppsqsb.net
• pbmz59uzndpo.com

• http://johannesbader.ch/2015/03/the-dga-f-simda-shiz/

• Gatyfus.com
• lyvyxor.com
• Vojyqem.com
• Qtyfuv.com
• Puvyxil.com
• Gahyqah.com
• lyryfyd.com
• vocyzit.com
• qgyqaq.com
• Purydyv.com

• https://www.johannesbader.ch/2016/06/the-dga-f-sisron/

• mdiwnjiwmtya.com
• Mdewnjiwmtya.com
• mzewntiwmtya.com
• mzawntiwmtya.com
• mjkwntiwmtya.com
• mjgwntiwmtya.com
• mjcwntiwmtya.com
• mjywntiwmtya.com
• mjuwntiwmtya.com
• mjqwntiwmtya.com

• http://www.rsaconfection.com/writable/presentations

• Perjalanan
• Menghancurkan
• Melawan
• malam
• Di dalam
• Upaya
• Jalan
• Lebih baik
• Suami
• Kecil

• http://johannesbader.ch/2015/01/the-dga-f-ymmi/

• Ogovoguipawi.dns.net
• Afowkaupbabe.ddns.net
• ipkureleakm.dns.net
• Hegiruqo.dns.net
• Luimreim.ddns.net
• tiakquoahuvu.dns.net
• Loelkuanur.dns.net
• Agdehukoev.dns.net
• Giagkuekorla.ddns.net
• leufiroqipomu.dns.net

• https://github.com/baderj/domain_generation_algorithms/tree/master/tempedreve/images

• dlbebsga.net
• Enqbgrmt.com
• xjlwpfnk.info
• ebabkjcx.org
• Hvisietg.net
• svyjglen.com
• Glknxfgq.info
• adodulah.org
• jgrxrxwh.net
• ctmrgbmz.com

• http://johannesbader.ch/2015/04/new-top- level- domains-for-tinbas-dga/

• Blackfreeqyio.cc
• Nvfowikhevmy.com
• Nvfowikhevmy.net
• Nvfowikhevmy.in
• Nvfowikhevmy.ru
• sjhuqlwrqhqx.com
• Sjhuqlwrqhqx.net
• Sjhuqlwrqhqx.in
• Sjhuqlwrqhqx.ru
• Pxgonyogee.com

• Dbqwpmpnrusywj.com
• Qxmubfleztlnkx.com
• RrnywoWowowQgmjvnltg.com
• rqnjdvzpsmbuw.com
• Utoiopxjrphvoiy.org
• Ttoouemmmmnxnmj.com
• nmjsourlgveecj.org
• JUPRVZXQOTONVS.BIZ
• Nmjsoourllgveecj.biz
• dotqwjmhqlushjlo.biz

• albdfhln.com
• alcgkown.com
• aldjpvqt.com
• alemuown.com
• alfpmrnq.org
• algspqt.org
• alhvrytw.org
• aliyuown.org
• aljnwpy.org
• alkpmrnq.net

• Ddknt.github.io
• Ddktn.github.io
• Ddnkt.github.io
• Ddntk.github.io
• Ddtkn.github.io
• Ddtnk.github.io
• dkdnt.github.io
• dkdtn.github.io
• dkndt.github.io
• dkntd.github.io

• https://johannesbader.ch/2015/11/a-javascript-dga//

• rxxeqoy.cc
• kmymbyzd.co
• cfukbzbmg.eu
• Sblwtafc.cc
• Lqdoacat.co
• dplmjcjic.eu
• Ttukaiwjdx.cc
• Meimklqh.co
• Enmxqcxhtl.eu
• Unmias.cc

• http://www.threatget.com/2016/11/vawtrak-dga-round-2.html

• Usahwtutu.com
• Folocnam.com
• Awumsah.com
• Edorwufli.com
• Misocutah.com
• Edarwotda.com
• Melarwetdic.com
• Uscnitdohg.com
• Regomseh.com
• Osicnumd.com

• 1d78e50d.com
• 1d78e50d.net
• 1d78e50d.org
• 1d78e50d.duckdns.org
• 2B04216F.com
• 2b04216f.net
• 2B04216F.org
• 2B04216f.duckdns.org
• 2e1d985c.com
• 2e1d985c.net

• https://johannesbader.ch/blog/the-dga-of-zloader/

• gdurfdsywubjaqchrh.com
• Vudktykcecigekhtwwqn.com
• Jcaofaekffeojktmpdax.com
• Iphrhkculpnubvvxnbh.com
• bjdbgbjdyredhfyvpie.com
• Wramitvqeojeaeceajxoj the.com
• Ohyjybhgogaeabjqvpie.com
• fsktelyeogmxudotlao.com
• Nsdtxvnwtxjwhbuqfe.com
• bohchavtvhbejwcmekvo.com