http://{BLOCKED}5.28.104/system/prinimalka.py/cookies

 Analysis by: Michael Donavan Go

 URL BLOCKING DATE/TIME: 27 Jul 2011 06:35:00 PM GMT-8
 RATING: HIGH
 DOMAIN: 213.155.28.104
 CATEGORY: Disease Vector
 DESCRIPTION:

BKDR_URSNIF.DN sends the gathered information to this site via HTTP post. The said malware monitors specific US banking and financial sites to steal information.

Related Malware