# Copyright (c) 2014-2025 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Aliases: mewspy, mewsspy, nionspy

# Reference: https://www.securityhome.eu/malware/malware.php?mal_id=7837428715a1e24d27a4fa7.97301329
# Reference: https://www.virustotal.com/gui/file/c71dee7464b6d7901ef12c7a3e8cba090535c66c588d33c58f8e23855ee26971/detection

176.31.246.49:14141
178.62.233.140:50000
213.186.113.10:62495
46.32.233.54:12204
46.32.233.54:53535
72.167.201.238:11080
arawerhaibod.com
xipuporebauwlas.com
laofcuedcip.ddns.net
moiwirixuxfuh.ddns.net
cxkefbwo7qcmlelb.onion
z3mm6cupmtw5b2xx.onion
awqausqaedsolo.localtunnel.me
beikawobwuoc.localtunnel.me
beipavcuxo.localtunnel.me
buebbowaniqiodt.localtunnel.me
buurikoq.localtunnel.me
causnuulnea.localtunnel.me
dasubaxagie.localtunnel.me
daugpoolsouwedt.localtunnel.me
doimsubeke.localtunnel.me
duheegtuoqekc.localtunnel.me
egleidef.localtunnel.me
ekucnevuif.localtunnel.me
escasion.localtunnel.me
etmuuqenimm.localtunnel.me
exadnaecitki.localtunnel.me
fuiqsaulogt.localtunnel.me
godumakokub.localtunnel.me
heokolexpeinx.localtunnel.me
hoeptuoqdiito.localtunnel.me
ibulboevaqduik.localtunnel.me
idxaotquesbo.localtunnel.me
ilufucvuiserer.localtunnel.me
iqnotirig.localtunnel.me
iximililekoqed.localtunnel.me
macoequpabe.localtunnel.me
miekwaukt.localtunnel.me
nihuseko.localtunnel.me
noobdeulux.localtunnel.me
obufisku.localtunnel.me
oceqmaadobe.localtunnel.me
ocluviraudurohc.localtunnel.me
ocwaohenwoaf.localtunnel.me
odoqomamlol.localtunnel.me
ogebbucuav.localtunnel.me
olahviuxcu.localtunnel.me
omovucve.localtunnel.me
orguabuhdumiro.localtunnel.me
pidopusoliba.localtunnel.me
puneahuckamu.localtunnel.me
qetahaaqk.localtunnel.me
ridekeobo.localtunnel.me
riifadasovafk.localtunnel.me
umnexiqoxi.localtunnel.me
umubtinanebeu.localtunnel.me
usirohsonuasa.localtunnel.me
uttohocoxit.localtunnel.me
uwaselloawm.localtunnel.me
vooqkoahxoebigu.localtunnel.me
wiitkoab.localtunnel.me
wocihekohuuh.localtunnel.me
wudiawokat.localtunnel.me
xaowuhopud.localtunnel.me

# Reference: https://www.virustotal.com/gui/file/0303d93b694b6a55fbaf47c710504022ca12c14c42a8afa6527fe488f3c2afab/detection

37.139.15.65:14088
85.214.252.4:9000
admupiuwabugu.ddns.net
afxiutimu.ddns.net
agagbobiteud.ddns.net
ahigewrepaduh.ddns.net
alvuidsi.ddns.net
amtewiigu.ddns.net
anlukupuusodu.ddns.net
aqquivokbuuv.ddns.net
aqunuxagtea.ddns.net
argaucorlebegau.ddns.net
aruttiewfai.ddns.net
atfiutavpebon.ddns.net
avednoefmeadifk.ddns.net
bainowiqih.ddns.net
bivohinuwauk.ddns.net
bupuivxaba.ddns.net
ceogipahcorema.ddns.net
ceoletucixve.ddns.net
desogeoml.ddns.net
duheveagfuufxu.ddns.net
ebneriaho.ddns.net
ebunfiix.ddns.net
egxepeifvotial.ddns.net
ehibulwutowi.ddns.net
ekihqaeqmeo.ddns.net
elaniqdaamuxur.ddns.net
enxiexehdu.ddns.net
eqleodtiod.ddns.net
eqriiciwip.ddns.net
erfoitagtu.ddns.net
esohkumupiuwu.ddns.net
ewakemnevuidet.ddns.net
ewesonohm.ddns.net
ewirgoma.ddns.net
ewotunhidor.ddns.net
faiwkiabmuaho.ddns.net
faqinosexorui.ddns.net
feegerweeld.ddns.net
fitoboheimhov.ddns.net
fuabsania.ddns.net
fubatixiva.ddns.net
gidievupqikeiw.ddns.net
gudepour.ddns.net
halewuuvankono.ddns.net
hanuqoodganaex.ddns.net
hiecefifroa.ddns.net
hohaismimeubcai.ddns.net
huegecqufawi.ddns.net
ibhogokeemaced.ddns.net
ibofdeocsuic.ddns.net
ifgiacsiefwaka.ddns.net
ilesgeoqnox.ddns.net
iloslibiu.ddns.net
iqibofucgovose.ddns.net
iwqerenaf.ddns.net
ixipacmiep.ddns.net
kaalidwiagiqla.ddns.net
kafoafivpouhne.ddns.net
keihehwiibenmo.ddns.net
kiixoscuwionok.ddns.net
kuesehonulewu.ddns.net
kufuucuwutmik.ddns.net
lipeqeiliver.ddns.net
lopoefnoogv.ddns.net
madoobobumuqduv.ddns.net
neolewuq.ddns.net
neqiqopeif.ddns.net
niutsimi.ddns.net
nuhaucetetqos.ddns.net
nuikufosreu.ddns.net
nutuocvaneofawo.ddns.net
nuwaqealnu.ddns.net
obwiupfoerto.ddns.net
ocegicemiffeoxw.ddns.net
odupgoveisat.ddns.net
ognuciawcofaefe.ddns.net
ogpeiwnuxaoxu.ddns.net
olurqexucorom.ddns.net
omroteol.ddns.net
oqigaxokex.ddns.net
oqmuabneuhiptee.ddns.net
osihsahaow.ddns.net
owamlookohepq.ddns.net
owleuwkeqaoh.ddns.net
owvodueqenw.ddns.net
pevoomub.ddns.net
poewakormauxis.ddns.net
puughariogsalea.ddns.net
qeocevuscae.ddns.net
qiafercaenheikd.ddns.net
qufateihpomi.ddns.net
quicdaxa.ddns.net
rebuurorc.ddns.net
reevakogpeoxivu.ddns.net
roloikxe.ddns.net
saarhiawhivaapi.ddns.net
sewedioqehaqh.ddns.net
siwupameakvimun.ddns.net
taipkobeqaogi.ddns.net
tavigeetoqraava.ddns.net
teimfeokexkuhee.ddns.net
toliowegdaev.ddns.net
tuecagabvomubi.ddns.net
tunaavipe.ddns.net
tuohesacbiuf.ddns.net
ucqumoiblioc.ddns.net
udovlohexeu.ddns.net
uggivitiavrabo.ddns.net
ugoqwiix.ddns.net
ukroekrinatuhof.ddns.net
umvowuipirp.ddns.net
unilulfe.ddns.net
unkigikoitnouc.ddns.net
untioxiqci.ddns.net
usraelbeemfoop.ddns.net
utabegbubelee.ddns.net
utobpoow.ddns.net
utreimocw.ddns.net
uwseepiwpus.ddns.net
uxeqbeqiifo.ddns.net
vacuefxegafu.ddns.net
voveasoh.ddns.net
vuneponunune.ddns.net
weneipekiq.ddns.net
wifelodureq.ddns.net
woewmuudol.ddns.net
wucuaslife.ddns.net
xeemekogt.ddns.net
xierumkewu.ddns.net
xoalbequ.ddns.net

# Generic

/si.php?data
