Página Inicial>Código fonte JSP>Outras categorias
Baixar

Algoritmos de geração de domínio

Algoritmos de geração de domínio (DGAs) de malware reimplementados em Python.

Visão geral

Banjori (também conhecido como Multibanker 2, Bankpatch (ER))

Links

  • http://johannesbader.ch/2015/02/the-dga-of-banjori/

Exemplo de domínios

  • EarnestnessBiophysicoHax.com
  • kwtoestnessbiophysicohax.com
  • rvcxestnessbiophysicohax.com
  • Hjbtestnessbiophysyialohax.com
  • txmoestnessbiophysicohax.com
  • AgekestnessBiophysicoHax.com
  • Dbzwestnessbiophysisialohax.com
  • Sgjxxestnessbiophysicohax.com
  • Igjyestnessbiophysyohax.com
  • zXaHestnessBiophysicoHax.com
Bazarbackdooor (também conhecido como BazarLoader Team9backdoor))

Links

  • https://johannesbader.ch/blog/the-dga-of-bazarbackdooor/
  • https://johannesbader.ch/blog/the-buggy-dga-of-bazarbackdoor/
  • https://johannesbader.ch/blog/the-buggy-dga-of-bazarbackdoor/

Exemplo de domínios

DGA real:

  • ADEGJKAIGGJM.BAZAR
  • eehjmejjjo.bazar
  • Dehiildjjiin.bazar
  • Ceeiklcjgikn.bazar
  • DCEIKKDHGIKM.BAZAR
  • Bfehjmbkggho.bazar
  • ADEGJMAIGGJO.BAZAR
  • dchiikdhjiim.Bazar
  • Effehkekghim.bazar
  • Bdhjkbijhm.bazar

Bggy dga: -_fdgimzkfgio.Bazaar -e'bfkieedfkkababazaar -efdgkekfgim.bazaar -begimzggio.bazaar -bbbhlbgdfhn.bazaar -^ehikizjjkik.bazaar --achimajehio.bazaar -] Defiizigfik.Bazaar -`` `BEGEIEIIK.BAZAAR -DEGFJDJIFJM.BAZAAR

Bumblebee

Exemplo de domínios

  • cmid1s1zeiu.life
  • Itszko2ot5u.life
  • 3v1n35i5kwx.life
  • Newdnq1xnl9.life
  • jkyj6awt1ao.life
  • Ddrjv6y42b8.life
  • 1pnhp5o5za1.life
  • y13iqvlfjl5.life
  • xp0btfgegbo.life
Chinad

Links

  • 360NetLab/DGA#1

Exemplo de domínios

  • 8f6bacmw30xxv6sc.cn
  • 486txu3yjly0xcmz.ru
  • xii6x8zg9rkanmyo.info
  • spy1jhhdbmvt2ueva.net
  • EVYBT5GTF2TPRVBI.INFO
  • 7qbys97e3pcw262c.info
  • KZ897C7N7VBUR.BIZ
  • zmkvlsvkbfnuez.ru
  • Tr1yy6lxtry1gsts.biz
  • mfq6uwq3p2hvc8zn.cn
Corebot

Links

  • https://johannesbader.ch/2015/09/the-dga-of-corebot/

Exemplo de domínios

  • Lkhylm0mhyfuhg.dns.net
  • S63234WLUV5V365BWP5.DDNS.NET
  • AFE6MFY23XCXGFA.DNS.NET
  • 7RSL1F34SFQ0OJ3JWVMFA6C.DNS.NET
  • IR7L3PO0GJY8YPQJM8O.DDNS.NET
  • 3lgupwdivsfm2w4kng2iha.ddns.net
  • i8a0q2wdu8otulkfylo2gdq.dnns.net
  • kh1her76avy0qnelivijwd1.ddns.net
  • Ubgp1f1han7lu410eh5.ddns.net
  • ulier8knadmpmmdm4wti6oro.dns.net
Darkcracks

Links

  • https://blog.xlab.qianxin.com/uncovering_darkcracks_payload_delivery_framework_cn/#part2-runner%E5%88%86%E6%9e%90

Exemplo de domínios

  • stdfugagjl.com
  • Evdfugagjl.com
  • Avdfugagjl.com
  • Mvdfugagjl.com
  • Ivdfugagjl.com
  • Uvdfugagjl.com
  • Qvdfugagjl.com
  • Ytcfugagjl.com
  • ktcfugagjl.com
  • gtcfugagjl.com
Dircrypt

Links

  • http://johannesbader.ch/2015/03/the-dga-f-dircrypt/

Exemplo de domínios

  • rauggyguyp.com
  • llulzza.com
  • mluztamhnngwgh.com
  • Mycojenxktsmozzthdv.com
  • Inbxvqkegiapgv.com
  • Furiararji.com
  • zrkdvzjhse.com
  • wyuhdsdttczd.com
  • hpaxgpkteomjaxywwelr.com
  • Mydojltbqjnwailiya.com
Dnscanger (também conhecido como Alureon)

Links

  • https://johannesbader.ch/2016/01/the-dga-in-alureon-dnschandger/

Exemplo de domínios

  • aktklyvbiu.com
  • zgimjzlnrl.com
  • Tcfejerekw.com
  • tfunnjmxt.com
  • ydvlfkguw.com
Fobber (aka tinba v3)

Exemplo de domínios

  • Vhkintjtksyxgjrz.net
  • btpnxlsfdqbhzazyx.net
  • ukfmknjdenthvktgc.net
  • Qupxsrhrhrmuooonqrit.net
  • gjsbydmrpfzsmnfiu.net
  • Indpsqbetcpcqprx.net
  • gwrdmhyjfcpcutmhp.net
  • bwzcypcbmnlpfsw.net
  • Twkpwfuecvzcincq.net
  • pdwfuxgnahmgsxhit.net
Fosniw

Exemplo de domínios

  • App2.winsoft0.com
  • App2.winsoft1.com
  • App2.winsoft2.com
  • App2.winsoft3.com
  • App2.winsoft4.com
  • App2.winsoft5.com
  • App2.winsoft6.com
  • App2.winsoft7.com
  • App2.winsoft8.com
  • App2.winsoft9.com
Gozi (também conhecido

Links

  • http://www.govcert.admin.ch/blog/18/gazi-isfb-when-a-bug-ly-s-is-a-fatuure

Exemplo de domínios

  • QuodpresidentAxsatiat.cit.
  • PertantumFitusu.com
  • indulgentiarumlicet.com
  • Moriblasphemianegoci.com
  • ptribueretnossetnonin.com
  • Não -sicordinario.com
  • svivacpecunias.com
  • Instimabiler.com
  • Ulpurgatoripetrum.com
  • Papacicognitisipro.com
Kraken/V1 (também conhecido como Bobax, Oderoor)

Links

  • https://johannesbader.ch/2015/12/krakens-two-domain-ganration-algorithms/

Exemplo de domínios

  • ibbwnhgh.mooo.com
  • rbqdxflojkj.mooo.com
  • smhburg.deyndns.org
  • Bltjhzqp.dyndns.org
  • Clwafrfuuxq.yi.org
  • cffxugijxn.yi.org
  • Ivxcxbj.dynserv.com
  • etllejr.dynserv.com
  • otpxmk.mooo.com
  • ejfjyd.mooo.com
Kraken/V2 (também conhecido como Bobax, Oderoor)

Links

  • https://johannesbader.ch/2015/12/krakens-two-domain-ganration-algorithms/

Exemplo de domínios

  • Xpdbwuimwag.com
  • nwpegpjtx.com
  • Smmyuhxlt.net
  • xjvyvnzivt.net
  • Lvctmusxcyz.tv
  • Lvctmusxcyz.tv
  • cjuszcfwo.cc
  • egbmbdey.cc
  • wjxaprgne.com
  • vxbuggxhrgi.com
Locky

Links

  • https://blogs.forceceint.com/security-labs/lockys-new-dga-seeding-new-domains

Exemplo de domínios

  • Gegjiimqmlgtdmk.tf
  • Pccibcjncnhn.yt
  • Rddipikmrap.us
  • mmhmkqfc.be
  • vkcims.pm
  • QtysMobytaGnrv.it
  • suhpqiumpjsv.ru
  • cscfbwbhs.uk
M0YV

Links

  • https://malpedia.caad.fkie.fraunhofer.de/details/win.m0yv
  • Vídeo do YouTube "Sinkholing O algoritmo de geração de domínio de M0YV"

Versão independente de tempo em dga.py , versão dependente do tempo em dga-td.py .

Exemplo de domínios

  • pywolwnvd.biz
  • Ssbzmoy.biz
  • cvgrf.biz
  • npukfztj.biz
  • Przvgke.biz
  • Zlenh.biz
  • Knjghuig.biz
  • Uhxqin.biz
  • anpmanmxo.biz
  • lpuegx.biz
Monerodownloader

Exemplo de domínios

  • 31B4BD31FG1X2.org
  • 31B4BD31FG1X2.TIKKETS
  • 31b4bd31fg1x2.blackfriiy
  • 31B4BD31FG1X2.HOSTING
  • 31B4BD31FG1X2.Feedback
  • 3F8C8079FD4C5.org
  • 3F8C8079FD4C5.Tickets
  • 3F8C8079FD4C5.Blackfriday
  • 3F8C8079FD4C5.HOSTING
  • 3F8C8079FD4C5.FEDBACK
Murofet/V1 (também conhecido como Licat)

Links

  • https://johannesbader.ch/2015/09/three-variants-of-murofets-dga/

Exemplo de domínios

  • Giywshshrgxcvoqgvrkthmfa.ru
  • xaiqpbrgymbrwmzgigrgdsk.com
  • amgqularpzxepztxenbx.net
  • Pfscijijbmhyfiyjgorggugtkbqyh.org
  • xglfcmsgorvwfilhmzlcxxvkfege.info
  • Rcteqwkequojntibvfyfaluwh.biz
  • mjfqylbiaunfuaeunzdqdwscu.ru
  • QobeylpxgpfknpTukydqvklztg.com
  • RgwgizukficDgetWsXovtcknwkfm.info
  • Betgyaeswxorwcvsdezdupb.org
Murofet/V2 (também conhecido como Licat)

Links

  • https://johannesbader.ch/2015/09/three-variants-of-murofets-dga/

Exemplo de domínios

  • Cmqvxtpnibli.biz
  • cmqvxtpnibli.com
  • rloqpoiongsuwyq.net
  • rloqpoiongsuwyq.org
  • zsophzovtfor.info
  • zsophzovtfor.biz
  • nlifthjnbgenfweq.org
  • nlifthjnbgenfweq.com
  • Hyktttqssssmvkoc.info
  • Hykpttqssssmvkoc.org
Murofet/V3 (também conhecido como Licat)

Links

  • https://johannesbader.ch/2015/09/three-variants-of-murofets-dga/

Exemplo de domínios

  • nxlyA47HUO61CZERB18O51E11D30I555GYCWE31LX.RU
  • JWDZPTM69P62IZCVE41F22K37OYJ16G63FQOTE11.com
  • P42P52NVD50IZKKAZAQE21LVO21PYCQOTP2E61.NET
  • B28N40I25B68GTE41O61DWC19HTC29JWGXIQFZBR.org
  • KTIRHSN50KZC49B58CYF32FWH14H64DZGXIQCZ.Info
  • BRE41HVC29KRI15EWPWDSAZJYN40P52KWE21GW.BIZ
  • n30MWHSSXFQ51J56LUNSG13O11HYD60EWF52NU.RU
  • HVCSJXD20MZM29D40NZNUNTA27C29KYI55FUN50.com
  • Nzosg13oymzg63ntpxaro51btkvfyoshrk27.info
  • CZFSN20EXG53NZCQCRGRG43EXF62B28P22PYD50LU.org
Mydoom (também conhecido como Novarg, Mimail.R, Shimgapi)

Exemplo de domínios

  • Qehspqnmrn.info
  • mmhaesqar.in
  • Pwprhnqn.in
  • mrspmramrn.in
  • Arphansaqh.com
  • hrhspsrenn.net
  • Aepaaaemrm.com
  • wsaehwases.in
  • Arwrseqssh.com
  • ewamspqwha.ws
Necurs

Links

  • http://johannesbader.ch/2015/02/the-dgas-f-necurs/

Exemplo de domínios

  • Nccojqvavavkiwhj.mx
  • hodwwywnmmbi.ac
  • Aianeaoinf.mu
  • Ccecggc.us
  • mffffmgtplxbyagbtegh.com
  • Thlxuwnadtdtsm.biz
  • Edkomqpeufjyafccj.in
  • mxomklaqu.pw
  • nvuttwteltin.tv
  • NHYSBIOMR.IR
Newgaz (também conhecido como Gameooter Zeus, Zeus ponto a ponto)

Links

  • https://johannesbader.ch/2014/12/the-dga-f-newgz/

Exemplo de domínios

  • XZZ3UG32BAALE1UO60YY7XJ6RGE.COM
  • 1HYZMW3L2PHYCETT8HZR2DO34.NET
  • 2PQ821CFEM5M1MDUA46PXG7BJ.BIZ
  • UNLM9W9L8UPY1KDDE0KBA7KTF.org
  • 1ixhw3p1nccr3cf1pjfrpz14n1u0e.com
  • 1O460KTPDHNA1K0LK3ECWUJXN.NET
  • 183t0wjzlthe51wigptk4rl29.org
  • 1i3ux5a1hj6ndqejmxoxone45g0v.net
  • 5MCD71MBUTPB1TGLU0S4P0LRF.com
  • N3i5yn19W82VMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMP1K1L4XRJG.org
ngiowb

Links

  • Netlab - e análise de linux.ngioweb botnet
  • NetLab - Atualização rápida no Linux.ngioweb botnet, agora está indo depois de dispositivos IoT

Exemplo de domínios

minihileth-subadofy.org revodihudom.info enisobure-netidimadom-minikevuship.org SemiridDenction-potepudney.com prolefexity-disorisance.org Notbazish-disahiblen-misehuraage.name ilolupage-não-alisudize-miniikazolike.net Seicofaxiful-enixakor-subafapean.info Overedaxive-não-canal Prevomozoari-microfemly.info

nymaim

Exemplo de domínios

  • OFTBPEC.com
  • Lotmpwyk.info
  • Seikpwq.info
  • bcfatyltdvp.info
  • rfwstgy.com
  • Hokybhnf.biz
  • Evlovrxuw.net
  • mtzpbzbfvy.info
  • Hacckgiakhl.com
  • Mosmeuw.net
Nymaim2

Links

  • https://johannesbader.ch/2018/04/the-new-domain-ganration-algorithm-of-nymaim/

Exemplo de domínios

  • Surfies-drawing.com
  • Shaft-criririon.cc
  • Paradas-hash.id
  • Unitsknowledge.com
  • wiredgraph.tm
  • tempo
  • Stablelikely.ch
  • Stainless-Loan.lk
  • Wagon-documents.sc
  • TrainerProcssors.tk
PadCrypt

Links

  • http://johannesbader.ch/2016/03/the-dga-f-padcrypt/

Exemplo de domínios

  • Elkfcfnacacmofdf.com
  • mkmeeeffnfdmb.de
  • Ffcdcnbmmnaddcd.com
  • Ddkfodnaadmbmofo.co.uk
  • Efneboaodnmbecoa.co
  • Bafomkfalcfcdkom.info
  • OnLMcdadnacfclc.com
  • Dcfmdfbobkmafa.com
  • Lmmmfdccmnfnmfdl.co
  • KCKNCONMCEEEEMLNM.com
Pitou

Links

  • https://johannesbader.ch/2019/07/the-dga-f-pitou/

Exemplo de domínios

  • --------------+
  • Koohoavab.net |
  • Koohoavac.net |
  • Koohoavad.net |
  • Koohoavaf.net |
  • Koohoavag.net |
  • Koohoavah.net |
  • Koohoavaj.net |
  • Koohoavak.net |
  • Koohoaval.net |
Pizd

Links

  • https://blog.avast.com/2013/06/18/your-facebook-connection-nn-seguduz/

Exemplo de domínios

  • Difícil.net
  • Dólar.net
  • DifícilPossible.net
  • Dollarpossible.net
  • EdelyNation.net
  • Escapenation.net
  • Edelypletesure.net
  • EscapePleasure.net
  • Earlynearly.net
  • escapenearly.net
Proslikefan

Links

  • https://johannesbader.ch/2016/06/proslyfan/

Exemplo de domínios

  • FRARVCPK.EU
  • Stjneohiod.biz
  • Vcevvkc.se
  • qylptiin.info
  • bsvisbttr.com
  • hjiknr.net
  • Arpeiezki.org
  • Gobqca.ru
  • tivqfahrmxdl.in
  • Smutloo.name
Pushdo

Exemplo de domínios

  • Wefokuggeir.kz
  • Sictemuborug.kz
  • Cirpicficj.kz
  • Geijanmap.kz
  • FUXHUXSABI.KZ
  • Siclisozdokq.kz
  • Sozcoqnafrex.kz
  • Qeobifups.kz
  • Cokoqdeah.kz
  • Latqafbuxwic.kz
pykspa/melhorando

Links

  • http://johannesbader.ch/2015/03/the-dga-fpykspa/

Exemplo de domínios

  • Uamskmq.org
  • jqplflktas.info
  • Rybwtr.net
  • uyznvxlof.info
  • Gakcmqiw.com
  • Wewsvat.net
  • OWHADWKSKEVW.NET
  • nkndlzhjgrpc.info
  • Isypszqu.net
  • Jobbaamoyt.info
pykspa/precursor

Links

  • http://johannesbader.ch/2015/07/pykspas-inferior-dga-version/

Exemplo de domínios

  • lfwhgin.com
  • Guququaiq.biz
  • Wctymo.net
  • Lovefjsfox.com
  • Oruhbanansnan.cc
  • mkncjk.biz
  • Yunonsuiwcyma.net
  • yxpojufqbex.com
  • qhxgzuffbex.cc
  • yywiywiq.biz
Qadars

Links

  • https://www.johannesbader.ch/2016/04/the-dga-f-qadars/

Exemplo de domínios

  • jk9enwhansl2.org
  • Sdqfodmf81m7.net
  • 5uro1uzspejk.net
  • Ub4hinsduf0p.net
  • zs9IJO1er81u.com
  • 0T67C5ARW9YF.NET
  • Lev41Encha38.net
  • 67K1Q3C1MR8X.org
  • 7W1YF49IRK5M.NET
  • gdunwhq7s9qb.org
Qakbot

Links

  • https://johannesbader.ch/2016/02/the-dga-f-qkbot/

Exemplo de domínios

  • Bqkrtxgkmriwsiwcngtivpx.info
  • Jdtmfupdyueqeldvhsjzdvzob.net
  • Guhmpoxzivhba.com
  • nqqxqhuacaqhzurde.org
  • lgqsqgpqzijwid.info
  • ykolycdcyk.biz
  • Ztvflnxqzpxvffvv.biz
  • Zqrmkpivrbxcawozqwqpfzh.org.org
  • Iqyqwhntrxfeq.org
  • ftadkbomxlnsib.info
Qsnatch

Links

  • https://www.kyberturvalisuuuskskus.fi/en/news/qsnatch-malware-designed-qnap-nas-devices

  • https://johannesbader.ch/blog/the-dga-f-qsnatch/

Exemplo de domínios

  • T2Q2R.CF
  • Gc9nz.tk
  • 07TVVC.com
  • 7ubqo.ml
  • 53BCM.DE
  • 6zltf.rocks
  • Hv7uv.mx
  • nypno.biz
  • qkzccy.net
  • rassb.cn
Ramnit

Links

  • https://johannesbader.ch/2014/12/the-dga-f-ramnit/

Exemplo de domínios

  • Knpqxlxcwtlvgrdyhd.com
  • nvlyfua.com
  • hgyudheedieibxy.com
  • analylixwcbnjopdd.com
  • Vrndmdrdrdjoff.com
  • Jhghrlufoh.com
  • tqjhvylf.com
  • Hufqifjq.com
  • ItktxExjghvvxa.com
  • ppyblahb.com
Ranbyus/maio

Links

  • http://johannesbader.ch/2015/05/the-dga-of-ranbyus/

Exemplo de domínios

  • Ikwoqkwuajpbyx.com
  • nukpdrluwlfox.pw
  • rcnxisuibbadng.in
  • wbqtidjvsdiwe.me
  • Jrdyumcieyipnv.cc
  • yvyfwikefxitk.su
  • Tviurcntxylxnj.tw
  • lycyrvfcemepfm.net
  • Epddeuukdimbpft.com
  • TRBHXHMBSIKOAQ.PW
Ranbyus/setembro

Links

  • http://johannesbader.ch/2015/09/ranbyuss-dga-revisited/

Exemplo de domínios

  • jxbdxeyxttdmcjagi.me
  • Iqmadibfhnssadm.cc
  • Gdoldagnedkke.su
  • jnbnyrmxmplfgstk.tw
  • ucjetnyaitygjidva.net
  • jejocqwtcbuymvao.com
  • StuctjSqfxghcesyw.pw
  • gfidctymbxiaqyuyk.in
  • OJRQWRLHESFSHAWVA.ME
  • bqjqvwwjirftwkjel.cc
Reconyc

Este DGA tem semeadura imprevisível , ou seja, é GetTickCount como semente. Eu ainda listo

Exemplo de domínios

  • E5zhail0mw.com
  • Gabbvk2o6s.com
  • Cump2a4d7.com
  • 5eswmwnqyf.com
  • lexfszyuwp.com
  • JzPesspff.com
  • Umiarnijet.com
  • Shr0xe9idm.com
  • nycex7wlcf.com
  • Vciznqxwpo.com
Sharkbot

Exemplo de domínios

  • 64F30398CDA3BF.XYZ
  • F008FC473FDDDC4.LIVE
  • cfbadaf0cd7b0ac3.com
  • B8D28386413029FE.STORE
  • 99C485497C079A09.info
  • 6D54B683FC2CC58F.TOP
  • ABB7547058FEF9FB.NET
Shiotob (também conhecido como Urlzone, Bebloh)

Links

  • https://johannesbader.ch/2015/01/the-dga-ofshotob/

Exemplo de domínios

  • Wtipubctwiekhir.net
  • rwmu35avqo12tqc.com
  • Rskb5bsfhm2fk5h.net
  • Rbp9pprrxgflut9.com
  • Zzzxeyzgy45yy2a.net
  • e3OA4WGLVD21XA.com
  • MQMQ1HVMTXZJV.NET
  • pd4o4wu24vimn.com
  • Tlmrzvpppsqsb.net
  • PBMZ59UZNDPO.com
Simda (também conhecido como shiz)

Links

  • http://johannesbader.ch/2015/03/the-dga-f-simda-shiz/

Exemplo de domínios

  • Gatyfus.com
  • lyvyxor.com
  • Vojyqem.com
  • Qtyfuv.com
  • Puvyxil.com
  • Gahyqah.com
  • lyryfyd.com
  • vocyzit.com
  • qgyqaq.com
  • Purydyv.com
Sisron (também conhecido como tumba, win32/agent.wrq, tojan.scar)

Links

  • https://www.johannesbader.ch/2016/06/the-dga-f-sisron/

Exemplo de domínios

  • mdiwnjiwmtya.com
  • Mdewnjiwmtya.com
  • mzewntiwmtya.com
  • mazawntiwmtya.com
  • mjkwntiwmtya.com
  • mjgwntiwmtya.com
  • mjcwntiwmtya.com
  • mjywntiwmtya.com
  • mjuwntiwmtya.com
  • mjqwntiwmtya.com
Suppobox

Links

  • http://www.rsaconfection.com/writable/presentações

Exemplo de domínios

  • Jornada
  • Destruir
  • Contra
  • noite
  • Dentro de
  • Esforço
  • Rua
  • Melhorar
  • Marido
  • Pequeno
Symmi

Links

  • http://johannesbader.ch/2015/01/the-dga-f-symmi/

Exemplo de domínios

  • Ogovoguipawi.dns.net
  • AFOWKAUPBABE.DDNS.NET
  • ipkureLeakm.dns.net
  • Hegiruqo.dns.net
  • Luimreim.ddns.net
  • tiakquoahuvu.dns.net
  • Loelkuanduur.dns.net
  • Agdehukoev.dns.net
  • Giagkuekorla.ddns.net
  • leufiroqipomu.dns.net
TempedReve

Links

  • https://github.com/baderj/domain_generation_algorithms/tree/master/tempedreve/images

Exemplo de domínios

  • dlBebsga.net
  • Enqbgrmt.com
  • xjlwpfnk.info
  • ebabkjcx.org
  • Hvisietg.net
  • Svyjglen.com
  • Glknxfgq.info
  • adodulah.org
  • JGRXRXWH.NET
  • ctmrgbmz.com
Tinba (também conhecido como Tinybanker, Zusy)

Links

  • http://johannesbader.ch/2015/04/new-top- nível- domins-for-tinbas-dga/

Exemplo de domínios

  • BlackFreeqyio.CC
  • Nvfowikhevmy.com
  • Nvfowikhevmy.net
  • Nvfowikhevmy.in
  • Nvfowikhevmy.ru
  • sjhuqlwrqhqx.com
  • Sjhuqlwrqhqx.net
  • Sjhuqlwrqhqx.in
  • Sjhuqlwrqhqx.ru
  • Pxgonyogee.com
Tufik

Exemplo de domínios

  • Dbqwpmpnrusywj.com
  • Qxmubfleztlnkx.com
  • Rrnywowowowowqgmjvnltg.com
  • rqnjdvzpsmbuw.com
  • Utoiopxjrphvoiy.org
  • Ttoouemmmmnxnmj.com
  • nmjsourlgveecj.org
  • Juprvzxqotonvs.biz
  • Nmjsoourllgveecj.biz
  • dotqwjmhqlushjlo.biz
DMSNIFF

Exemplo de domínios

  • albdfhln.com
  • alcgkown.com
  • aldjpvqt.com
  • Alemuown.com
  • alfpmrnq.org
  • algspqt.org
  • ALHVRYTW.org
  • Aliyuown.org
  • aljnwpy.org
  • alkpmrnq.net
Não nomeado_downloader

Exemplo de domínios

  • Ddknt.github.io
  • Ddktn.github.io
  • Ddnkt.github.io
  • Ddntk.github.io
  • Ddtkn.github.io
  • Ddtnk.github.io
  • dkdnt.github.io
  • dkdtn.github.io
  • dkndt.github.io
  • dkntd.github.io
Não nomeado_javascript_dga

Links

  • https://johannesbader.ch/2015/11/a-javascript baseado em dga/

Exemplo de domínios

  • rxxeqoy.cc
  • kmymbyzd.co
  • cfukbzbmg.eu
  • Sblwtafc.cc
  • Lqdoacat.co
  • dplmjcjic.eu
  • Ttukaiwjdx.cc
  • Meimklqh.co
  • Enmxqcxhtl.eu
  • UNMASS.CC
VAWTRAK

Links

  • http://www.threatget.com/2016/11/vawtrak-dga-lound-2.html

Exemplo de domínios

  • Usahwtutu.com
  • Folocnam.com
  • Awumsah.com
  • Edorwufli.com
  • Misocutah.com
  • Edowotda.com
  • Melarwetdic.com
  • Uscnitdohg.com
  • regomseh.com
  • Osicnumd.com
Xmrig_gonesis (um malware xmrig usando o bloco de gênese bitcoin como semente))

Exemplo de domínios

  • 1d78e50d.com
  • 1d78e50d.net
  • 1d78e50d.org
  • 1d78e50d.duckdns.org
  • 2B04216F.com
  • 2B04216F.NET
  • 2B04216F.org
  • 2B04216F.DUCKDNS.org
  • 2E1D985C.com
  • 2E1D985C.NET
Zloader

Links

  • https://johannesbader.ch/blog/the-dga-of-zloader/

Exemplo de domínios

  • gdurfdsywubjaqchrh.com
  • Vudktykcecigekhtwwqn.com
  • Jcaofaekffeojktmpdax.com
  • iphrhkculpnubvvxnbh.com
  • bjdbgbjdyredhfyvpie.com
  • WramitvqeojeaeCeajxoj the.com
  • OhyjybhgoGaeAbjqvpie.com
  • fskTelyEogMxudotlao.com
  • Nsdtxvnwtxjwhbuqfe.com
  • bohchavtvhbejwcmekvo.com
Expandir
Informações adicionais
Aplicativos Relacionados
Recomendado para você
Informações Relacionadas Todos