Researchers at Seculert discover that the PushDo malware gang has counter-punched a research report by Dell SecureWorks and Damballa outing its use of a domain generation algorithm and has adjusted the DGA to generate just.KZ domains. PushDo and Cutwail have been taken down numerous times by authorities. The latest version of PushDo has infected anywhere between 175,000 and 500,000 machines, experts said. The malware is capable of detecting what security software is running on a compromised machine and is able of querying legitimate websites in addition to its C&C servers.
Source: https://threatpost.com/pushdo-attackers-adjust-algorithm-to-generate-kz-domains/100684/