Domain > asia-online.us

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

http://cyb3rsleuth.blogspot.co.uk/2011/08/chinese-...

http://www.secureworks.com/cyber-threat-intelligen...

https://www.secureworks.com/research/sindigoo

https://www.secureworks.com/research/the-mirage-ca...

Files that talk to asia-online.us

MD5	A/V
646abf38720c7301698c32bec62d84ce	[Trojan.RegSubDat-16] [Trojan.Gyplit.a] [Artemis!646ABF38720C] [Trojan.Win32.MLW.cpcme] [Malware.PFHP] [Win32/Tnega.WFO] [BKDR_KIRPICH.SM] [Heur.Suspicious] [BackDoor.Gyplit.2] [Mal/Gyplit-A] [Trojan:Win32/Gyplit.A] [Win-Trojan/Gyplit.39936.B] [W32/Dx.WWT!tr] [Trj/CI.A]
12954f97e5db1cc86ecfe12be2ec7323	[W32.Clod740.Trojan.7e2c] [Artemis!12954F97E5DB] [Trojan.Win32.MLW.czakz] [W32/Trojan4.TOO] [Malware.QGEO] [BKDR_KIRPICH.SM] [Trojan.RegSubDat-15] [Mal/Gyplit-A] [Heur.Suspicious] [Trojan.Inject.62478] [Trojan:Win32/Gyplit.A] [Win-Trojan/Xema.variant] [W32/Trojan.WNSB-4987] [Trj/CI.A] [W32/Dx.VEN!tr]
351f1ee0cc65d004d40183a7fb6ce616	[Trojan*Win32/Gyplit.A] [Trojan.RegSubDat-16] [Artemis!351F1EE0CC65] [<W32/MalwareF.SRML] [Malware.PFHY] [Win32/Tnega.WFO] [BKDR_KIRPICH.SM] [Trojan.Win32.MLW.cpcme] [Heur.Suspicious] [BackDoor.Gyplit.2] [Mal/Gyplit-A] [Trojan:Win32/Gyplit.A] [W32/Risk.IYJK-7579] [Win-Trojan/Xema.variant] [W32/Dx.VJR!tr] [Trj/CI.A]
c5860171f919761db9ee78ef3dac5ab4	[Trojan.RegSubDat-18] [Artemis!C5860171F919] [Trojan.Win32.DownLoader4.dtfqe] [BKDR_KIRPICH.A] [Backdoor.AFCore!o+y9eBiIVXk] [Trojan.DownLoader4.46899] [Mal/Behav-112] [Trojan:Win32/Gyplit.A] [Trojan/Win32.AFCore] [Trj/CI.A] [Trojan.Win32.Gyplit] [W32/Dx.WRD!tr]
030d492c8d12434144f9b1dc97928cb8	[Artemis!030D492C8D12] [Trojan.Win32.DownLoader4.dtfqe] [Malware.SGDR] [BKDR_KIRPICH.A] [Trojan.RegSubDat-18] [Backdoor.AFCore!o+y9eBiIVXk] [Mal/Behav-112] [Trojan.DownLoader4.46899] [Trojan:Win32/Gyplit.A] [Trojan/Win32.AFCore] [Trojan.Win32.Gyplit] [W32/Dx.XGK!tr]
aa90c8e524edb644286c5c0f6c5de987	[Trojan*Win32/Gyplit.A] [Trojan.RegSubDat-16] [W32.Clodec6.Trojan.ae3a] [Artemis!AA90C8E524ED] [Trojan.Win32.MLW.cpcme] [Malware.PMLY] [Win32/Tnega.WFO] [BKDR_KIRPICH.D] [Mal/Gyplit-A] [Heur.Suspicious] [BackDoor.Gyplit.2] [Trojan:Win32/Gyplit.A] [Win-Trojan/Gyplit.39936] [W32/Dx.WXM!tr]

Whois

Property	Value
Name	Costin Raiu
Organization	Kaspersky Info Systems s.r.l.
Email	craiu@noh.ro
Address	Bld. Dacia 130A, ap. 8
Zip Code	020056
City	Bucharest
State	Bucharest
Country	RO
Phone	+1.40745071883
NameServer	PDNS04.DOMAINCONTROL.COM
Created	2014-02-07 19:12:49
Changed	2014-02-07 19:12:49
Expires	2015-02-07 00:59:59
Registrar	GODADDY.COM, INC.