MalwareHunterTeam Max is 17, he is bored and loves making RATs😀. All of us should talk to him. "Hello my name is Max Im 17 I love making RAT and I will love you too if you use me You can also write to me and talk to me I often get bored"

101.43.12[.]250

"vulfix-dde-daemon_5.16.16_amd64.tar.gz": b62f4998dece330a582f0431f7d6cd22fa1a8f79880d5aec4ea9068eeab25497 -> "vulfix-dde-daemon_5.16.16_amd64.deb.patch1": c78b176380b094089115a432251b21f4283f84a8f6253ca9d2b45fefd3b129c0 152.32.131[.]171

Interesting #CobaltStrike from "apt-99" with C2: pythongo[.]online LNK -> Silverlight.exe (sideloading coreclr.dll) -> bin.dat -> CS C:\Users\admin\Desktop\Project\cs4.5(apt-99)\cs4.5 2\external\beacon\Release\beacon.pdb moto_sato StrikeReady Labs

"Daivinchik.apk": 30afff95d7a4c4af2a82682ecc02ea4a41772ace88f2ddb7af37466813f24dd8 From (404 now): https://google-download[.]one/apk/Daivinchik.apk

50b628bc603d846c04ab5dc56a5bc40b32b219c29211661f663ec7bb160a0554 Contains 4 .lnk files, same "glorytoukraine\.zip" as next stage archive: 92af5439d1fc0172fcd8068957d132fb89256ab1d93457120e7b4f1a1910e757 From: http://5.181.156[.]117/glorytoukraine.zip

😂

🤔

16.163.146[.]131

"SSA\.gov_SocialStatment.exe": 77a4f959f19592757a9c5f50c0f6187370d35fec575de6c034c94ce88042823b 37.221.64[.]42 🤔

🤡

50.17.18[.]227

"telegramviewerv.apk": 027014be763384f64f2720dc1edecc2eae76025e4bfa6b90a8ec977d2d43e92f From: https://alinmaexchange[.]com/telegramviewerv.apk

"Update_Browser.zip": 896983dee48b90e2d2663255959e3018dcd0d0669cb5aa9dd972d98b0a72974e From: https://irp.cdn-website[.]com/defd6f61/files/uploaded/Update_Browser.zip

"Kathleen+Release\.zip": 1a4380f4a67993c78d73e57335b7972189ea44f768517c2e382ee267cc48ad5f "CiscoUpdater000_PARTIAL.dll"