Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 164

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 167

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 170

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 173

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 176

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 178

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 180

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 202

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 206

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 224

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 225

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 227

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 321

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 321

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 321

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/includes/class.layout.php on line 321

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/admin/class.options.metapanel.php on line 56

Warning: Creating default object from empty value in /home/ethical/public_html/wp-content/themes/platform/admin/class.options.metapanel.php on line 49
July | 2012 | Certified Ethical Hackers Security Analyst Malware Hacking Information
From the monthly archives: July 2012

http://mtc.sri.com/live_data/cc_servers/

#########################################################################
## Cumulative Command-and-Control Server List: Fri Jul 27 08:37:49 2012
##
## Total Number of C and C Channels Observed: 14
##
#########################################################################
#CC SERVER ADDRESS PORT GEOGRAPHY (CNT)
#########################################################################
94.63.149.150 65520 ## ??:Unknown (5)
94.63.147.131 65520 ## ??:Unknown (1)
91.226.212.164 65520 ## EU: (1)
91.226.212.159 65520 ## EU: (2)
91.217.82.147 65520 ## EU: (3)
83.133.119.197 65520 ## DE:Germany (54)
69.22.162.40 80 ## US:United States (1)
66.41.211.152 3921 ## US:United States (2)
66.252.13.152 445 ## US:United States (1)
213.155.14.161 80 ## DE:Germany (1079)
190.96.181.218 6900 ## ??:Unknown (4)
182.72.4.108 3921 ## ??:Unknown (4)
114.112.255.81 65520 ## ??:Unknown (15)
109.70.26.36 80 ## ??:Unknown (3)

At the time of writing, the new Command and Control server appears operational, however, it doesn’t have all the scripts from previously used servers. Nevertheless, the page used to exfiltrate data (with help of “sik.php”) does work fine:

./madi-check http://72.55.X.X/Sendfilejj.html
HTTP/1.1 200 OK
Content-Length: 1361
Content-Type: text/html
Last-Modified: Wed, 27 Jul 2011 01:11:21 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Wed, 25 Jul 2012 09:53:47 GMT

Set your Twitter account name in your settings to use the TwitterBar Section.