http://snipers117.{BLOCKED}p.org:1888

 Analysis by: Jann Adrian Santos

 URL BLOCKING DATE/TIME: 21 Nov 2012 08:40:00 AM GMT-8
 RATING: HIGH
 DOMAIN: snipers117.no-ip.org:1888
 CATEGORY: Disease Vector
 DESCRIPTION:

BKDR_DOKSTORMC.A connects to this site to send and receive commands from a remote user. This malware was used in a spammed email message that warns users of a tsunami that will supposedly hit Australia on New Year’s Eve.

Related Malware