# Copyright (c) 2014-2024 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://twitter.com/MichalKoczwara/status/1551632627387473920
# Reference: https://github.com/blackorbird/APT_REPORT/blob/master/summary/2022/Russian%20Ransomware%20C2%20Network%20Discovered%20in%20Censys%20Data.pdf

3.133.59.113:8090
5.101.4.196:8443
5.101.5.196:8443
80.211.130.78:8443

# Reference: https://github.com/conexioninversa/MalwareIntel/blob/main/C2_Deimos.txt

103.231.172.147:8443
103.231.172.148:8443
165.227.45.251:8443
217.73.62.166:8443
34.28.124.78:8443
34.88.231.68:8443
45.143.201.95:8443
45.88.3.113:8443
5.101.4.196:8443
5.101.5.196:8443
83.220.173.29:8443
peterkinsadvil.ptr1.ru

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/

103.44.253.115:10000
104.196.56.239:443
106.75.229.132:10000
112.29.177.100:10036
112.29.177.101:10036
112.29.177.103:10036
112.29.177.104:10036
112.29.177.105:10036
112.29.177.107:10036
112.29.177.108:10036
112.29.177.109:10036
112.29.177.10:10036
112.29.177.110:10036
112.29.177.111:10036
112.29.177.112:10036
112.29.177.114:10036
112.29.177.115:10036
112.29.177.116:10036
112.29.177.117:10036
112.29.177.118:10036
112.29.177.11:10036
112.29.177.120:10036
112.29.177.123:10036
112.29.177.13:10036
112.29.177.14:10036
112.29.177.15:10036
112.29.177.17:10036
112.29.177.199:10036
112.29.177.205:10036
112.29.177.207:10036
112.29.177.209:10036
112.29.177.210:10036
112.29.177.211:10036
112.29.177.212:10036
112.29.177.213:10036
112.29.177.215:10036
112.29.177.216:10036
112.29.177.217:10036
112.29.177.218:10036
112.29.177.219:10036
112.29.177.220:10036
112.29.177.221:10036
112.29.177.222:10036
112.29.177.223:10036
112.29.177.226:10036
112.29.177.227:10036
112.29.177.228:10036
112.29.177.229:10036
112.29.177.22:10036
112.29.177.230:10036
112.29.177.231:10036
112.29.177.232:10036
112.29.177.233:10036
112.29.177.234:10036
112.29.177.235:10036
112.29.177.236:10036
112.29.177.237:10036
112.29.177.238:10036
112.29.177.23:10036
112.29.177.241:10036
112.29.177.242:10036
112.29.177.243:10036
112.29.177.249:10036
112.29.177.250:10036
112.29.177.251:10036
112.29.177.252:10036
112.29.177.27:10036
112.29.177.29:10036
112.29.177.30:10036
112.29.177.31:10036
112.29.177.32:10036
112.29.177.37:10036
112.29.177.39:10036
112.29.177.3:10036
112.29.177.40:10036
112.29.177.41:10036
112.29.177.42:10036
112.29.177.46:10036
112.29.177.48:10036
112.29.177.49:10036
112.29.177.4:10036
112.29.177.50:10036
112.29.177.51:10036
112.29.177.52:10036
112.29.177.53:10036
112.29.177.56:10036
112.29.177.59:10036
112.29.177.5:10036
112.29.177.62:10036
112.29.177.66:10036
112.29.177.68:10036
112.29.177.69:10036
112.29.177.6:10036
112.29.177.70:10036
112.29.177.73:10036
112.29.177.74:10036
112.29.177.75:10036
112.29.177.76:10036
112.29.177.77:10036
112.29.177.78:10036
112.29.177.79:10036
112.29.177.7:10036
112.29.177.80:10036
112.29.177.81:10036
112.29.177.82:10036
112.29.177.83:10036
112.29.177.84:10036
112.29.177.85:10036
112.29.177.8:10036
112.29.177.90:10036
112.29.177.91:10036
112.29.177.92:10036
112.29.177.93:10036
112.29.177.94:10036
112.29.177.95:10036
112.29.177.96:10036
112.29.177.97:10036
112.29.177.98:10036
112.29.177.99:10036
112.29.177.9:10036
112.29.180.11:10036
112.29.180.15:10036
112.29.180.19:10036
112.29.180.25:10036
112.29.180.29:10036
112.29.180.35:10036
112.29.180.36:10036
112.29.180.37:10036
112.29.180.38:10036
112.29.180.42:10036
112.29.180.45:10036
112.29.180.46:10036
112.29.180.47:10036
112.29.180.48:10036
112.29.180.49:10036
112.29.180.53:10036
112.29.180.54:10036
112.29.180.55:10036
112.29.180.57:10036
112.29.180.60:10036
112.29.180.7:10036
112.29.180.8:10036
112.29.180.9:10036
113.108.52.214:30016
115.178.77.142:8800
115.178.77.142:9879
115.178.77.145:8800
118.128.205.8:2376
129.159.88.174:443
134.79.106.208:10250
134.79.106.212:10250
134.79.106.213:10250
134.79.129.112:10250
134.79.129.122:10250
134.79.129.123:10250
134.79.129.88:10250
14.29.118.239:19013
150.136.195.7:443
150.230.194.159:9444
152.70.165.103:443
153.127.6.127:8800
165.227.45.251:4443
165.227.45.251:4444
167.172.100.213:443
173.242.121.206:443
176.122.155.194:8888
18.162.155.202:443
18.162.193.120:443
185.142.98.14:9090
202.98.224.214:28090
213.155.247.7:8443
220.130.28.152:443
3.139.182.36:8443
3.140.170.199:8443
3.209.12.178:3060
34.147.114.77:8800
34.91.254.205:8800
36.95.131.171:9091
39.106.36.96:443
43.198.73.212:443
44.230.201.248:443
45.77.7.58:443
54.151.143.251:443
58.250.32.16:30016
59.46.210.116:30016
61.216.149.32:9444
64.254.19.142:443
64.254.28.121:443
64.254.28.122:443
79.137.203.70:443
8.218.26.114:443
88.99.17.3:9919
88.99.17.5:9919
81.70.24.179:10000
92.116.24.76:443

# Reference: https://twitter.com/drb_ra/status/1654014623421460482

3.209.12.178:3060

# Reference: https://twitter.com/drb_ra/status/1654014635584962561

8.218.26.114:443

# Reference: https://twitter.com/drb_ra/status/1654014646955786241

18.162.155.202:443

# Reference: https://twitter.com/drb_ra/status/1654014658234261505

18.162.193.120:443

# Reference: https://twitter.com/drb_ra/status/1654014669428781061

36.95.131.171:9091

# Reference: https://twitter.com/drb_ra/status/1654014681269321730

39.106.36.96:443

# Reference: https://twitter.com/drb_ra/status/1654014693072154628

43.198.73.212:443

# Reference: https://twitter.com/drb_ra/status/1654014704774160387

44.230.201.248:443

# Reference: https://twitter.com/drb_ra/status/1654014718577704960

54.151.143.251:443

# Reference: https://twitter.com/drb_ra/status/1654014749867122688

185.142.98.14:9090

# Reference: https://twitter.com/drb_ra/status/1654014760805888000

202.98.224.214:28090

# Reference: https://twitter.com/drb_ra/status/1654196028281704472

34.147.114.77:8800

# Reference: https://twitter.com/drb_ra/status/1654196063987814424

153.127.6.127:8800

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/

109.192.42.61:8772
115.178.77.142:9877
115.178.77.142:9878
115.178.77.145:9877
115.178.77.145:9878
115.178.77.145:9879
120.196.99.51:30016
120.196.99.59:30016
120.196.99.65:30016
176.122.155.194:7777
196.188.31.81:443
202.105.134.43:30016
202.98.224.206:28090
202.98.224.210:28090
202.98.224.218:28090
202.98.224.222:28090
202.98.226.202:28090
202.98.226.206:28090
202.98.226.210:28090
202.98.226.214:28090
202.98.226.218:28090
204.13.154.239:9551
211.95.133.19:30249
213.246.183.28:443
34.81.252.215:10091
58.251.128.117:30016
65.153.151.175:10011
80.240.131.27:443
88.99.17.2:9919
88.99.17.6:9919

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2023-07-30)

120.196.99.89:30016
13.33.49.168:443
153.127.33.186:8800
222.204.197.12:9100
44.216.250.133:443
47.97.166.129:10443

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2023-08-11)

112.29.177.12:10036
112.29.177.71:10036
124.24.58.252:9090
134.79.129.96:10250
183.36.40.98:10000
3.78.199.107:9000
35.71.185.24:443
36.138.134.148:8443
42.247.11.53:8928
58.251.128.87:30016

# Reference: https://blog.talosintelligence.com/lazarus-collectionrat/
# Reference: https://www.virustotal.com/gui/file/05e9fe8e9e693cb073ba82096c291145c953ca3a3f8b3974f9c66d15c1a3a11d/detection

108.61.186.55:443

# Reference: https://twitter.com/drb_ra/status/1694964579338494280
# Reference: https://twitter.com/drb_ra/status/1695508129545347262
# Reference: https://threatfox.abuse.ch/ioc/1151929/

13.245.163.162:443
184.97.46.154:8080
208.93.103.205:443
58.251.128.148:30016
61.121.83.152:9080
61.121.83.152:9090
61.121.83.153:9080
61.121.83.154:9080
88.130.127.16:443
92.116.88.238:443
92.116.89.167:443

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2023-09-27)

112.29.177.253:10036
112.29.180.17:10036
112.29.180.23:10036
156.59.88.32:8860
212.227.191.42:65432
54.68.113.254:8443
61.121.83.153:9090
61.121.83.154:9090
75.2.27.176:443
8.217.217.243:8082
80.2.242.3:8206
81.200.47.66:443
87.122.216.200:443
87.122.219.215:443
97.69.224.172:8080

# Reference: https://twitter.com/drb_ra/status/1703481261380038670

8.129.77.150:10000

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2023-09-29)

http://222.88.56.101
http://222.88.56.105
http://5.161.225.160
103.11.1.147:443
103.11.3.170:443
103.113.100.99:443
103.116.248.171:443
103.12.198.163:443
103.152.221.43:6607
103.83.31.209:443
110.93.229.98:443
112.29.177.19:10036
112.29.177.20:10036
112.29.177.214:10036
112.29.177.225:10036
112.29.177.254:10036
112.29.177.34:10036
112.29.177.36:10036
112.29.177.87:10036
112.29.180.12:10036
112.29.180.20:10036
112.29.180.28:10036
112.29.180.31:10036
112.29.180.43:10036
114.83.4.23:15780
115.186.25.31:443
119.152.6.213:443
119.156.27.89:8843
119.190.136.165:9000
120.132.83.136:6443
121.166.111.37:10250
124.156.173.75:4443
129.226.151.175:26766
13.245.163.162:4444
13.248.204.3:10006
13.248.204.3:10007
13.251.49.40:443
142.171.2.161:443
144.76.97.203:443
146.56.179.219:443
146.75.15.221:9031
146.75.23.221:9031
146.75.71.221:9031
15.222.155.153:11002
151.101.135.221:9031
151.101.215.221:9031
152.69.220.235:1443
154.118.230.140:30098
154.118.230.141:30098
154.118.230.142:30098
154.13.28.16:46321
157.254.20.34:6607
161.189.238.234:443
167.86.85.34:443
172.177.95.197:5671
172.177.95.197:8883
178.189.215.120:443
178.33.168.52:10250
18.183.137.140:443
180.165.189.185:17272
180.184.32.156:10250
180.184.74.248:32002
184.100.144.58:8080
185.198.140.179:443
185.92.150.128:8081
192.227.213.235:60000
199.232.251.221:9031
20.200.107.245:443
20.216.129.54:443
20.65.145.66:1337
202.165.234.82:443
202.70.144.241:8443
204.28.111.10:8843
207.148.122.239:443
207.174.28.42:443
208.70.48.31:8080
222.73.124.89:10877
34.142.44.93:10443
37.152.179.33:2023
37.152.191.55:7777
38.207.176.111:8443
38.47.99.24:58595
43.132.69.14:10250
43.198.187.66:443
43.198.203.238:443
43.198.240.228:443
43.198.97.99:443
45.148.132.134:12345
45.249.9.171:443
45.33.59.99:10724
45.90.218.248:443
46.225.119.108:12115
5.101.4.196:21007
5.101.5.196:21007
5.189.152.51:443
52.77.170.230:443
52.84.151.45:443
54.93.117.12:443
58.181.97.19:443
58.27.188.30:443
59.103.171.17:443
59.103.81.96:443
62.216.92.151:8443
62.77.159.136:8443
65.153.151.130:8800
65.153.151.130:8855
65.153.151.175:10010
67.202.213.3:443
75.2.58.166:443
76.223.68.71:10011
76.223.68.71:10012
87.122.216.191:443
91.132.196.39:9090
92.116.89.214:443
92.116.91.188:443
92.116.91.237:443
93.107.187.21:443
99.83.220.181:443

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos_c2/

112.3.30.170:10250
120.132.83.136:10250
124.156.173.75:8443
13.245.163.162:8443
13.248.174.235:443
13.248.202.168:443
137.175.19.209:8443
15.197.184.110:443
168.138.174.216:9443
18.211.5.15:443
207.174.28.42:8443
222.218.105.21:25177
34.235.18.0:8443
5.181.156.137:8443
128.140.41.99:443
8.140.203.92:7817
8.218.170.109:443
deimosc2.com

# Reference: https://twitter.com/drb_ra/status/1731565672084255198

49.13.57.52:2053

# Reference: https://twitter.com/drb_ra/status/1739357017007911253

139.135.61.33:443

# Reference: https://twitter.com/drb_ra/status/1744611608628740355

114.83.4.23:15780

# Reference: https://twitter.com/drb_ra/status/1747510912464851036

119.160.88.100:443

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2024-03-17)

http://218.28.172.11
http://218.28.172.4
103.150.208.227:443
113.25.150.234:10250
131.186.22.89:443
154.17.15.207:443
168.76.172.111:15023
172.104.53.129:10002
20.212.217.245:10002
209.9.200.69:32002
34.124.224.8:10002
34.126.126.52:443
34.138.61.159:443
42.2.112.129:32002
43.198.108.245:443
43.198.251.145:443
43.198.89.50:443
47.98.126.140:10000
47.98.126.140:10004
50.19.168.53:443
74.48.220.34:443
85.111.0.39:10250
87.122.8.35:443

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2024-03-31)

http://218.28.172.25
103.137.27.83:443
103.169.126.238:44447
103.99.178.207:443
104.234.155.118:5040
111.31.37.38:4505
116.177.245.48:4505
119.96.91.140:4506
123.247.80.47:10250
125.73.208.34:4506
13.112.154.194:443
15.197.164.51:443
163.181.142.111:4505
163.181.142.96:4505
163.181.39.67:4506
168.76.172.126:15023
172.218.112.83:8080
18.162.142.16:443
183.36.40.98:10004
198.90.21.114:443
39.145.65.102:4505
43.198.208.125:443
43.198.225.0:443
43.198.243.210:443
43.198.82.119:443
45.66.217.179:45
52.223.20.75:8443
72.255.55.82:443
8.219.236.149:443
82.197.65.180:443
87.120.204.101:16053
88.130.123.89:443
89.22.182.206:1720
91.219.236.89:443
99.83.171.11:443
99.83.207.194:443

# Reference: https://twitter.com/drb_ra/status/1779038426433454268

163.181.142.111:4505

# Reference: https://x.com/drb_ra/status/1796071510102225241

188.166.116.129:4443

# Reference: https://threatfox.abuse.ch/browse/malware/win.deimos/ (# 2024-06-12)

http://167.86.85.34
http://5.189.152.51
101.226.27.179:4505
101.75.251.49:4505
103.134.144.225:29903
103.134.144.226:29903
103.85.74.193:443
106.225.243.115:4505
107.174.115.223:4443
107.174.188.48:8443
110.43.133.2:10250
111.123.53.96:4506
111.19.135.79:4506
111.31.37.38:4506
111.6.178.72:4506
113.207.40.22:4505
116.136.135.93:4506
116.142.245.94:4505
116.204.167.161:443
116.206.166.212:443
117.103.116.78:4505
117.135.194.92:4506
117.139.140.7:4506
118.212.140.132:4505
119.96.137.30:4506
119.96.67.97:4506
121.14.159.60:10250
121.227.168.76:10250
121.227.168.77:10250
121.227.168.78:10250
121.36.16.229:8080
121.43.94.2:4506
124.239.234.175:4506
125.39.177.105:4505
125.73.208.47:4505
13.212.214.23:10002
13.215.213.40:443
13.55.72.22:443
131.154.128.183:8443
137.175.113.92:443
140.249.32.157:4506
140.249.32.175:4505
15.197.146.59:443
155.94.204.217:4443
156.253.7.77:4506
163.181.100.75:4506
163.181.100.96:4506
163.181.105.70:4506
163.181.128.95:4506
163.181.130.93:4506
163.181.140.108:4505
163.181.141.79:4505
163.181.39.72:4505
163.181.88.76:4505
172.104.162.22:16033
173.216.245.82:8080
173.242.156.181:448
18.134.60.47:8084
180.117.162.14:3443
180.117.162.14:380
182.140.130.101:4505
182.176.35.160:443
183.214.129.157:4505
183.214.129.174:4506
185.228.235.158:443
185.244.208.251:16013
194.190.220.7:10250
194.87.252.12:4443
199.19.106.171:443
202.69.47.95:443
205.234.200.8:443
213.87.44.192:443
219.144.98.12:4506
221.130.195.172:4506
221.211.234.138:4506
222.186.17.75:4505
222.186.17.75:4506
222.204.197.11:10250
223.109.3.172:4505
223.111.199.81:4506
23.225.146.82:443
23.225.146.83:443
23.225.146.84:443
23.225.146.85:443
23.225.146.86:443
27.221.54.88:4505
3.33.182.244:443
36.147.2.78:4505
36.150.240.37:4505
36.159.60.161:4505
38.165.104.28:443
38.173.107.201:443
38.54.56.43:8443
38.6.199.111:29903
39.145.65.90:4505
39.173.112.177:4506
39.185.245.204:4505
39.185.245.209:4506
45.200.8.75:4506
46.167.129.231:15596
49.119.120.21:10250
51.91.208.69:30674
51.91.208.69:31962
51.91.208.69:32455
51.91.209.109:30674
51.91.209.109:31962
51.91.209.109:32455
51.91.209.154:30674
51.91.209.154:31962
51.91.209.154:32455
52.194.213.46:443
52.74.20.24:5000
52.83.56.72:443
54.169.75.222:443
54.253.108.48:443
58.215.159.80:4506
61.128.153.112:4505
61.182.130.108:4505
61.182.130.80:4506
62.169.23.231:443
65.153.151.50:10011
77.68.73.99:8080
8.129.77.150:10004
80.210.56.248:587
89.117.172.225:58895
89.175.170.211:1720
94.6.155.2:8443
95.164.16.146:8443
95.164.47.247:8443
97.64.33.33:443
98.98.118.81:4505
98.98.119.98:4506
99.83.165.50:443
99.83.171.148:443
99.83.190.128:443
99.83.229.219:443

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s.csv

101.206.204.92:4506
107.172.87.135:443
111.12.212.218:4506
111.13.104.234:4505
111.13.104.234:4506
111.62.71.36:4505
117.156.19.41:10250
117.53.43.106:443
119.152.6.82:443
119.188.218.158:4505
119.188.218.158:4506
120.201.229.105:4506
120.220.47.242:4506
121.91.37.98:443
124.163.194.70:4506
125.74.19.26:4505
154.92.10.73:4506
156.253.7.119:4505
156.253.7.69:4505
163.181.130.79:4506
163.181.160.83:4506
163.181.90.73:4506
178.209.99.214:8443
180.130.102.89:4506
182.140.130.90:4506
183.220.149.148:4505
185.238.250.143:443
194.110.173.14:443
195.2.71.30:443
210.76.62.50:4506
211.95.133.87:49084
3.98.189.58:11002
36.131.128.111:4506
43.224.239.81:443
45.200.8.110:4505
52.81.115.30:443
59.103.81.85:443
59.103.87.145:443
72.255.55.97:443
75.2.71.143:443
77.68.29.89:8443
83.220.172.119:8843
99.112.198.250:8080

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s-30day.csv (# 2024-07-20)

101.226.27.151:4506
101.66.163.151:4506
103.153.38.149:443
103.73.158.84:4506
109.228.35.102:8443
111.132.33.46:4506
112.16.236.145:4506
112.51.127.14:4505
113.137.54.73:4505
117.156.19.42:10250
117.157.225.15:8105
119.152.6.32:443
119.188.38.75:4505
119.96.62.178:4505
120.233.41.179:4506
121.91.37.94:443
125.39.47.104:4506
140.249.40.90:4505
142.111.162.151:443
148.135.115.35:443
154.12.56.138:443
154.214.34.48:443
154.214.39.44:443
154.7.181.55:443
156.253.6.96:4505
164.90.241.207:2053
172.232.250.47:443
176.119.147.48:443
182.91.252.41:4506
222.211.82.138:4506
222.211.82.9:4506
27.221.15.240:4505
3.33.169.167:443
35.220.201.119:443
37.111.183.34:443
42.81.23.64:4505
43.224.237.100:443
43.224.237.106:443
54.230.60.211:443
58.144.143.69:4505
61.128.153.102:4506
75.2.15.2:443
76.223.8.222:443
77.68.26.59:8443
78.111.2.53:10022
8.45.52.106:4506
87.122.9.173:443
92.116.88.156:443

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s-30day.csv (# 2024-08-03)

103.11.1.163:443
116.177.245.42:4506
119.30.107.33:443
154.21.89.52:443
163.181.50.76:4506
182.201.241.170:4505
45.138.74.162:1902
45.76.64.98:443
47.246.8.83:4506

# Reference: https://threatfox.abuse.ch/browse/tag/deimos/ (# 2024-08-18)

103.12.196.158:443
103.77.173.201:31564
106.225.242.91:4506
107.172.87.135:8443
117.156.19.149:10250
117.156.19.43:10250
117.175.57.1:4505
117.175.57.49:4505
117.68.74.50:4506
119.147.50.49:4506
120.206.184.109:4506
120.222.236.92:4505
124.156.246.68:587
124.238.243.35:4506
125.74.19.32:4505
125.78.111.158:7001
125.94.42.91:4506
156.253.6.100:4506
163.181.201.85:4506
163.181.94.70:4506
176.97.78.33:8443
182.176.35.158:443
183.240.215.86:4505
20.14.86.180:8443
218.166.5.31:443
218.188.154.39:31564
24.247.93.19:8080
27.221.15.213:4506
36.131.216.82:4506
42.185.157.113:4506
42.236.83.66:4506
44.230.208.84:443
45.163.12.47:8443
45.200.8.112:4506
45.86.228.125:8443
5.230.75.234:8443
50.114.154.64:443
61.180.209.110:4506
65.109.209.255:8443
65.8.79.168:443
75.2.15.186:443
77.68.26.59:8843
81.12.92.10:443
82.152.160.104:443

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s-30day.csv (# 2024-08-24)

103.190.232.103:31564
106.225.243.85:4506
116.198.164.139:443
117.157.252.171:10250
117.157.252.20:10250
118.112.23.100:4506
139.215.167.47:4506
156.253.7.123:4506
163.181.129.105:4506
163.181.22.84:4506
178.253.53.102:50014
27.221.79.239:4506
36.159.93.40:4506
60.191.87.84:4506

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s-30day.csv (# 2024-09-08)

103.167.255.210:443
103.221.247.170:443
103.234.53.177:443
117.156.19.143:10250
117.156.19.167:10250
120.24.76.93:8083
121.14.84.39:4506
129.154.204.165:21113
129.154.204.166:21113
13.248.136.188:443
15.197.195.68:443
150.138.39.152:4506
164.90.175.186:8080
183.240.215.111:4506
185.113.4.75:990
202.69.47.99:443
211.191.181.98:10250
221.130.195.162:4506
36.248.215.39:4506
43.224.239.95:443
47.246.44.80:4506
59.103.87.209:443
61.242.183.109:4506
71.131.242.196:443
76.190.89.188:448
77.238.236.123:18300
8.38.121.106:4506
95.72.84.20:8443

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s-30day.csv (# 2024-09-14)

101.66.163.136:4505
101.66.163.136:4506
101.66.163.157:4506
103.138.222.35:443
112.94.22.24:15300
115.223.42.90:4506
163.181.141.66:4506
192.227.133.20:443
219.153.158.225:4506
219.153.158.98:4506
54.77.141.195:443
58.144.143.90:4506
59.103.171.81:443
77.68.120.147:8843

# Reference: https://raw.githubusercontent.com/drb-ra/C2IntelFeeds/master/feeds/unverified/IPPortC2s-30day.csv (# 2024-09-22)

101.66.163.175:4505
117.156.19.144:10250
117.156.19.25:10250
118.253.171.66:4506
13.112.191.226:443
131.226.212.246:20000
149.28.58.196:46195
163.181.88.65:4506
210.26.176.45:4874
27.221.54.108:4506
66.76.148.102:8080
70.165.111.86:8080
82.152.162.205:443
91.107.182.57:443
