Help RSS API Feed Maltego Contact                        

Domain > onguso.com

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as MALICIOUS

Files that talk to onguso.com
MD5A/V
7bf5f938a455551106bba49097c27401
eb8dfbb987ba4cfd7511266a5469521e[TR/Crypt.Xpack.nibk] [Trojan/Win32.Teslacrypt] [Trj/TeslaCrypt.A] [Win32.Trojan.Inject.Auto] [Inject3.AJGG]
42fae8c8bf239802d5b6e1019a05337b[Ransom.TeslaCrypt] [Win32.Trojan.WisdomEyes.151026.9950.9999] [BehavesLike.Win32.Virut.dc] [Trojan/Win32.Teslacrypt]
934aa6ed394659d8cf986c5b5adca80b
ad464198422329e5e598266aa2ede420[Trojan.Downloader.JSVD] [Ransom_CRYPTESLA.YUYAKQ] [Trojan.Downloader.JSVD] [Trojan.Downloader.JSVD] [Trojan.Win32.Slym.ebmsfv] [Win32.Trojan.Inject.Auto] [Trojan.Downloader.JSVD] [Trojan.Downloader.JSVD] [Trojan.AVKill.61298] [BehavesLike.Win32.FakeAlertSecurityTool.dc] [Backdoor.Androm.gef] [TR/Crypt.Xpack.vzlr] [Trojan.Downloader.JSVD] [Troj.Crypt.Xpack!c] [Trojan/Win32.Teslacrypt] [Artemis!AD4641984223] [Inject3.AJGG] [Trj/TeslaCrypt.A]
e8e956637f36a97f251746016be22c30[Trojan.Bedep] [Win32.Trojan.WisdomEyes.151026.9950.9977] [Win32/Filecoder.TeslaCrypt.K] [Ransom_CRYPTESLA.CBQ164B] [Win32.Trojan.Bp-ransomware.Ejqz] [Trojan.AVKill.61292] [Ransom_CRYPTESLA.CBQ164B] [BehavesLike.Win32.Expiro.dc] [Trojan[Ransom]/Win32.Bitman] [Trojan.Zusy.D2DDD7] [Trojan/Win32.Teslacrypt] [FileCryptor.JXA]
e4f06493c67164cb617b2c7ee45927f7[JS:Exploit.JS.TeslaCrypt.B] [JS:Exploit.JS.TeslaCrypt.B] [JS.Downloader] [JS/TrojanDownloader.Nemucod.QW] [JS:Exploit.JS.TeslaCrypt.B] [Troj/JSDldr-FM] [JS:Exploit.JS.TeslaCrypt.B] [BehavesLike.JS.Exploit.zj] [JS:Exploit.JS.TeslaCrypt.B] [JS:Exploit.JS.TeslaCrypt.B] [Js.Trojan.Raas.Auto]
573475e8808bc37d8fc5bf0492bda728
b2a26286652200e3f8878564ba070dd3[Ransomware-FHS!B2A262866522] [Ransom.TeslaCrypt] [Win32.Trojan.WisdomEyes.151026.9950.9999] [Ransom_HPCRYPTESLA.SMA3] [Trojan-Ransom.Win32.Bitman.yfl] [BehavesLike.Win32.Suspect.dc] [TR/Crypt.ZPACK.azus] [Ransom:Win32/Tescrypt!rfn] [Ransom.TeslaCrypt/Variant] [Trojan/Win32.Teslacrypt] [Win32.Trojan.Bitman.Peza] [Trojan.Win32.Crypt] [W32/Kryptik.EUDQ!tr] [Crypt_r.BTJ]
94f4ca8eb18f36101b5aa9d11742278c
a3046cede819ca8a46990c1e7a7ede5f[JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS/TrojanDownloader.Nemucod.SW] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [Js.Trojan.Raas.Auto] [Trojan.Script]
e2b492b3609679b5ca358c4801de7d60[HEUR.JS.Trojan.ba]
85f8e0ad1b739d8c5245296a96611955[JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS/TrojanDownloader.Nemucod.SW] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [Js.Trojan.Raas.Auto] [Trojan.Script]
fc34bf4be48fea467be6bc1e8f414e38[JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS.Downloader] [JS/TrojanDownloader.Nemucod.SW] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [Js.Trojan.Raas.Auto] [Trojan.Script]
bf847ee0348488ad8f74b35290accf81[JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS/TrojanDownloader.Nemucod.SW] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [Js.Trojan.Raas.Auto] [Trojan.Script]
cc899204f9ba4bead0b85f87e49b77dc[JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS/TrojanDownloader.Nemucod.SW] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [JS:Trojan.Crypt.OQ] [Js.Trojan.Raas.Auto] [Trojan.Script]
74337efdecab4e0d6cec7cbf7ee640d4[HEUR.JS.Trojan.ba] [Js.Trojan.Raas.Auto]
ae5c8cbc566cb5c7c294fd8d0d91af4c
75c9b00e76e5e7b3e817685cf3cb3469[Ransom.TelsaCrypt] [Win32.Trojan.WisdomEyes.151026.9950.9999] [BehavesLike.Win32.Expiro.fc]
9550284c5f6a5bbc92e84b6cdde044f0[HW32.Packed.378A] [Trojan.Tpyn.r4] [Spyware.PasswordStealer] [Packed.Win32.Tpyn] [Trojan.AVKill.61432] [BehavesLike.Win32.PWSZbot.dc] [Trojan.Yakes.iuv] [TR/Crypt.ZPACK.wslf] [Trojan.Mazam.13] [Trojan:Win32/Dynamer!ac] [Win-Trojan/Teslacrypt.1339F9E] [Artemis!9550284C5F6A] [Trj/GdSda.A] [Win32.Trojan.Kryptik.Hsia] [Crypt5.AYQN]

Whois
PropertyValue
Email LLLCPXJQM@WHOISPRIVACYPROTECT.COM
NameServer NS22.IXWEBHOSTING.COM
Created 2015-08-21 00:00:00
Changed 2015-08-21 00:00:00
Expires 2016-08-21 00:00:00
Registrar ENOM, INC.