Malicious actors buy domain names all the time to pressure organizations or companies into paying thousands of dollars for a domain name like company.sucks. It wouldn't surprise me if malware developers pivoted to blackmailing by damaging good reputations via their malware. A clean $5000 check is better than skimming $10 off of hundreds of credit cards or McDonalds accounts.