hild.shop - Githubissues

Comments

This domain is being used by the IP in https://github.com/mypdns/matrix/issues/707 to distribute Strella Stealer

Wildcard domain records

hild.shop|malicious

Sub-Domain records

No response

Hosts (RFC:953) specific records, not used by DNS RPZ firewalls

No response

SeafeSearch records

No response

Screenshots

Screenshot

Links to external sources

https://urlscan.io/search/#page.ip:%2245.9.74.32%22
http://hild.shop:8888/3700.dll
https://urlscan.io/result/aa13ca1b-e505-4191-8933-bfa9679fbd22/
https://www.virustotal.com/gui/file/8fe4d6a7d3ac4641d2d66eb4432e419e495d8046728a6f7f0d7a2201e1264657

logs from uBlock Origin

N/A

mypdns / matrix

hild.shop #721

Comments

Wildcard domain records

Sub-Domain records

Hosts (RFC:953) specific records, not used by DNS RPZ firewalls

SeafeSearch records

Screenshots

Links to external sources

logs from uBlock Origin