ChainCatcher message, the National Cybersecurity and Information Security Information Notification Center has discovered a batch of malicious websites and malicious IPs from abroad. Foreign hacker organizations are continuously launching cyber attacks against China and other countries using these websites and IPs. These malicious websites and IPs are closely associated with specific Trojan programs or Trojan control servers, with one malicious address linked to the Nanocore virus family sample, which can expand to implement various malicious functions, such as cryptocurrency mining, ransomware attacks, etc.