# Copyright (c) 2014-2024 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://medium.com/@DCSO_CyTec/shortandmalicious-strelastealer-aims-for-mail-credentials-a4c3e78c8abc

http://193.106.191.166
http://45.142.212.20

# Reference: https://twitter.com/1ZRR4H/status/1654573411618680833
# Reference: https://www.virustotal.com/gui/file/f6810204e0bd8619ed494ade1e38a88567674e14704cae2382d1e3ec280a2705/detection
# Reference: https://www.virustotal.com/gui/file/4e37d4cd3f8de9d0231ebfbed388be78184cabbd9dbd1ee19dd24d8a5d7ccc32/detection
# Reference: https://www.virustotal.com/gui/file/150077e091c12aaa9d670093c4fd467da65f008d46a1c1ab7998cb32b04914d3/detection

http://91.215.85.209

# Reference: https://twitter.com/AgidCert/status/1695004388190806210

http://193.109.85.77

# Reference: https://twitter.com/d4rksystem/status/1768351504761528620
# Reference: https://securityliterate.com/unpacking-strela-stealer/
# Reference: https://www.virustotal.com/gui/file/3b1b5dfb8c3605227c131e388379ad19d2ad6d240e69beb858d5ea50a7d506f9/detection

http://45.9.74.12

# Reference: https://x.com/JAMESWT_MHT/status/1810641866393534474
# Reference: https://app.any.run/tasks/a3fd75f7-0421-4c28-902a-116771d6aedf/

http://45.9.74.13
45.9.74.13:445
45.9.74.13:8888

# Reference: https://x.com/0xToxin/status/1811656147943752045
# Reference: https://tria.ge/240712-hpknkavfkg/behavioral2
# Reference: https://www.virustotal.com/gui/file/05ac9f3e72e99e8b77722c952f92047502a0fea92175b276cfa54d0fd800313a/detection

http://45.9.74.32
45.9.74.32:445
45.9.74.32:8888

# Reference: https://www.virustotal.com/gui/file/d14812c99bcac204a3aed4fdf0781565e2d9a0b31a142a3c66af5299e7045071/detection

http://193.109.85.231
