Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add 91.215.85.223 and related domains to malicious lists #678

Merged
merged 2 commits into from
Jul 11, 2024
Merged

Add 91.215.85.223 and related domains to malicious lists #678

merged 2 commits into from
Jul 11, 2024

Conversation

g0d33p3rsec
Copy link
Collaborator

This adds the Godzilla related indicators discussed in mitchellkrogza/phishing#446: 91.215.85.223 #650, bratiop.ru #651, check-time.ru #652, dgkhj.ru #653, nicoslag.ru #654, paipaisdvzxc.ru #655, partaususd.ru #656, qd34gf23ewrfsd1233.ru #657, qwertasd.ru #658, qwerty12346.ru #659, hubvera.ac.ug #660, pastratas.ac.ug #661, badhabits.ug #662, karimgouss.ug #663, lastimaners.ug #664, malayska.ug #665, marksidfgs.ug #666, mistitis.ug #667, opesjk.ug #668, opsdjs.ug #669, playwell.ug #670, timebound.ug #671, timecheck.ug #672, timekeeper.ug #673, triathlethe.ug #674, tuskslacx.ug #675, wellplayed.ug #676, and zxvbcrt.ug #677 to the related malicious lists.

@g0d33p3rsec g0d33p3rsec added the Malicious Domains used for Malicious software label Jul 8, 2024
spirillen
spirillen requested changes Jul 9, 2024
View reviewed changes
Copy link
Contributor

@spirillen spirillen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGM, and you even found the exception i the README for bulk commit 🥇

Would it be possible for you to do a git commit --amend in your fork and add all the domains +IP to the commit msg, to make it easier to relocate in 5 years with git blame | grep $domain

This was linked to issues Jul 9, 2024
91.215.85.223 - Godzilla Loader host #650
Closed
opsdjs.ug #669
Closed
playwell.ug #670
Closed
timebound.ug #671
Closed
timecheck.ug #672
Closed
timekeeper.ug #673
Closed
triathlethe.ug #674
Closed
tuskslacx.ug #675
Closed
wellplayed.ug #676
Closed
zxvbcrt.ug #677
Closed
This was unlinked from issues Jul 9, 2024
opsdjs.ug #669
Closed
playwell.ug #670
Closed
timebound.ug #671
Closed
timecheck.ug #672
Closed
timekeeper.ug #673
Closed
triathlethe.ug #674
Closed
tuskslacx.ug #675
Closed
wellplayed.ug #676
Closed
zxvbcrt.ug #677
Closed
This was linked to issues Jul 9, 2024
bratiop.ru #651
Closed
check-time.ru #652
Closed
dgkhj.ru #653
Closed
hubvera.ac.ug #660
Closed
badhabits.ug #662
Closed
karimgouss.ug #663
Closed
lastimaners.ug #664
Closed
malayska.ug #665
Closed
@spirillen spirillen linked an issue Jul 9, 2024 that may be closed by this pull request
marksidfgs.ug #666
Closed
@g0d33p3rsec
add-91.215.85.223-and-related-domains-to-malicious-lists 40bc37a11d4]…
c72b12a 
… add 91.215.85.223, the IP that is hosting Godzilla Loader, to rpz-ip; add bratiop.ru, check-time.ru, dgkhj.ru, nicoslag.ru, paipaisdvzxc.ru, partaususd.ru, qd34gf23ewrfsd1233.ru, qwertasd.ru, qwerty12346.ru, hubvera.ac.ug, pastratas.ac.ug, badhabits.ug, karimgouss.ug, lastimaners.ug, malayska.ug, marksidfgs.ug, mistitis.ug, opesjk.ug, opsdjs.ug, playwell.ug, timebound.ug, timecheck.ug, timekeeper.ug, triathlethe.ug, tuskslacx.ug, wellplayed.ug, and zxvbcrt.ug to add-wildcard-domain
@g0d33p3rsec g0d33p3rsec force-pushed the add-91.215.85.223-and-related-domains-to-malicious-lists branch from 8cc17fd to c72b12a Compare July 9, 2024 23:22
@spirillen spirillen merged commit a938ec2 into mypdns:master Jul 11, 2024
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@spirillen spirillen spirillen requested changes

Assignees
No one assigned
Labels
Malicious Domains used for Malicious software
Milestone
No milestone
2 participants
@g0d33p3rsec @spirillen