Help RSS API Feed Maltego Contact                        

Domain > rihan37.codns.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to rihan37.codns.com
MD5A/V
81b098739aa24ef2d883beec55326762[Heur/Downloader.ZALX!suspicious] [Downloader] [W32/Xyligan.KR!tr.bdr] [Trojan*Win32/Bulta!rfn*Backdoor*Win32/Xyligan.B] [W32/Trojan.ZQBM-2226] [Backdoor.Win32.PcClient] [Backdoor.PePatch.Win32.85462] [BScope.Trojan.Win32.Inject.2] [Trojan.DownLoader8.1581]
9518e5d441f7ebe2748f96e33bd86333[Downloader] [W32/Xyligan.KR!tr.bdr] [Trojan*Win32/Bulta!rfn*Backdoor*Win32/Xyligan.B] [W32/Trojan.ZQBM-2226] [Backdoor.Win32.PcClient] [Backdoor.PePatch.Win32.85463] [BScope.Trojan.Win32.Inject.2] [Trojan.DownLoad.46081]
25c1ad4d63b7c9e21672ed9d8cea02eb[Backdoor.ADAD@240FF53#00.mg] [Downloader] [W32/Xyligan.KR!tr.bdr] [Backdoor*Win32/Xyligan.B] [W32/Trojan.ZQBM-2226] [Backdoor.Win32.PcClient] [BScope.Trojan.Win32.Inject.2] [Trojan.DownLoad.46081]

Whois
PropertyValue
Email manager@nehom.com
NameServer NS3.CODNS.COM
Created 2000-06-28 00:00:00
Changed 2014-06-28 00:00:00
Expires 2019-06-28 00:00:00
Registrar INAMES CO., LTD.