# Copyright (c) 2014-2025 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://twitter.com/banthisguy9349/status/1787364816505450732
# Reference: https://twitter.com/RacWatchin8872/status/1787417966176240082

103.1.40.149:280
103.1.40.159:280
103.1.40.230:280
103.183.2.202:280
103.183.2.203:280
103.183.2.204:280
103.183.2.205:280
103.183.2.206:280
137.220.146.133:280
154.212.146.164:280
154.91.195.27:280
206.238.199.221:280
206.238.199.59:280
216.83.52.115:280
216.83.58.160:280
216.83.58.162:280
216.83.58.165:280
216.83.58.171:280
216.83.58.178:280
27.124.3.116:280
27.124.3.120:280
38.181.88.110:280
38.181.88.122:280
38.181.88.125:280
38.181.88.133:280
38.181.88.199:280
38.181.88.36:280
38.181.88.53:280
38.181.88.77:280
38.181.88.7:280
38.181.88.89:280
45.195.204.114:280
45.195.204.37:280
45.195.204.48:280
45.195.204.50:280
45.195.204.57:280
45.195.204.59:280
45.195.204.76:280
45.91.226.111:280
45.91.226.112:280
45.91.226.113:280

# Reference: https://twitter.com/banthisguy9349/status/1788966249034080565
# Reference: https://pastebin.com/r4ceAVYg

http://103.207.166.8
124.221.217.28:8080
154.19.167.24:280
154.19.167.35:280
154.19.167.8:280
216.83.52.112:280
27.124.3.117:280
27.124.3.87:280
38.181.88.23:280
38.181.88.46:280
38.181.88.63:280
38.181.88.66:280
38.181.88.83:280
38.181.88.88:280

# Reference: https://x.com/banthisguy9349/status/1855912817708134491

137.220.146.130:280
137.220.146.131:280
137.220.146.232:280
154.91.195.60:280
202.61.84.162:280
206.238.197.233:280
206.238.199.29:280
27.124.46.219:280
27.124.46.21:280

# Reference: https://www.virustotal.com/gui/file/e9ec97e5149ca5f874c65b7810ab257a12855e488a72f4ca7fa9d7fe20eafd9b/detection

206.238.199.29:34463
jerryrat2024.oss-cn-beijing.aliyuncs.com

# Reference: https://www.virustotal.com/gui/file/b2383a7155b83a16a3dcb502509589da256c7c6612e15cad17ec04e07975613a/detection

206.238.199.29:168

# Reference: https://www.virustotal.com/gui/file/a9ace363095401b81d8f07c72063e0c1511c70b791088e85a6e9b88646351bc6/detection
# Reference: https://www.virustotal.com/gui/file/0e3931fa23fee91744016242b132e12f98e7c2c99c525658919caa63dbe7bcb2/detection

206.238.199.29:16888

# Reference: https://x.com/banthisguy9349/status/1855917342745608464

111.92.241.175:2123
111.92.241.190:2123
111.92.241.231:2123
156.238.235.245:2123
156.238.235.29:2123
107-136a.oss-cn-beijing.aliyuncs.com
143-34a.oss-cn-beijing.aliyuncs.com
14a22.oss-cn-beijing.aliyuncs.com
154-71.oss-cn-beijing.aliyuncs.com
202a47.oss-cn-beijing.aliyuncs.com
47a181.oss-cn-beijing.aliyuncs.com
47b17.oss-cn-beijing.aliyuncs.com
jerryrat2024.oss-cn-beijing.aliyuncs.com
yjwj2024.oss-cn-shanghai.aliyuncs.com

# Reference: https://x.com/banthisguy9349/status/1856250381036044612

154.19.164.136:280
206.119.81.69:280
206.238.179.202:280

# Reference: https://x.com/banthisguy9349/status/1931255204219093438
# Reference: https://urlhaus.abuse.ch/browse/tag/payload.bin/ (# 2025-06-07)

http://103.207.166.25
http://103.207.166.3
http://154.213.18.205
http://154.213.18.212
http://154.213.18.243
http://43.199.33.246
103.106.202.176:280
118.107.43.66:280
137.220.146.157:280
154.198.53.137:280
154.212.150.85:280
154.212.150.88:280
154.212.150.96:280
156.247.35.64:280
202.61.84.170:280
206.238.114.200:280
206.238.178.145:280
206.238.197.181:280
27.124.3.88:280
27.124.46.194:280
27.124.46.206:280
27.124.46.207:280
27.124.46.211:280
27.124.46.214:280
27.124.46.220:280
38.181.88.137:280
45.194.37.7:280
kk30.xyz

# Reference: https://x.com/banthisguy9349/status/1977399283503485238

103.108.66.247:280
103.75.47.34:280
2.59.155.43:280
