[Emerging-Sigs] Whatismyip Sigs
eslerj at gmail.com
Thu Jan 15 00:16:53 EST 2009
Probably how most malware should be handled at stage one.
On Jan 14, 2009, at 10:24 PM, David Glosser allegedly wrote:
> <evil thought>
> what would happen to the malware if these ip check-on sites were
> pointed to 127.0.0.1 or to a false address?
> </evil thought>
> On Wed, Jan 14, 2009 at 10:21 PM, Paul Dokas <dokas at oitsec.umn.edu>
>> Matt Jonkman wrote:
>>> Forgot to ask, anyone know of other sites that are commonly used by
>>> malware? These are 95% of what we see in the sandnet.
>> We've seen malware hit ipchicken.com.
>> Paul Dokas dokas at
>> Don Juan Matus: "an enigma wrapped in mystery wrapped in a
>> Emerging-sigs mailing list
>> Emerging-sigs at emergingthreats.net
> Emerging-sigs mailing list
> Emerging-sigs at emergingthreats.net
More information about the Emerging-sigs