Domain > wallpapersau.net

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://www.malware-traffic-analysis.net/2016/01/29...

https://otx.alienvault.com/pulse/56afd5714637f2355...

Files that talk to wallpapersau.net

MD5	A/V
f4233909d68a965d3c4378f7d31026b7	[BehavesLike.Win32.Ransom.hc]
85fec8e93044f59332d201a1f439cf7b	[BehavesLike.Win32.Ransom.hc]
be9de6d5d49395892cec2e8a052503ff	[BehavesLike.Win32.Ransom.hc]
e45503e18cf10f9fa77791006bd9d717	[HW32.Packed.D77C] [Win32.Trojan.Inject.Auto]
4c3473886deb608aa9f741ff898d9c69	[Trojan-Ransom.Win32.Cryptodef.acux] [Ransom_CRYPWALL.YUYAHL] [TR/Crypt.ZPACK.183123] [Ransom:Win32/Crowti.A] [Trojan.Win32.CryptoWall.G] [Win32/Filecoder.CryptoWall.G] [Trojan.Win32.Filecoder] [PossibleThreat.P0] [Crypt_r.AUG]
bb386da95bbe11e3504436298dbf8faf	[HW32.Packed.953D] [Suspicious.Cloud.5] [BehavesLike.Win32.Downloader.dc]
2b8ef43d17480e5119e6b8747fca7bb7	[Trojan.Win32.Swizzor.1!O] [Artemis!2B8EF43D1748] [Win32/Filecoder.CryptoWall.G] [RANSOM_CRYPWALL.YUYAHM] [Trojan-Ransom.Win32.Cryptodef.acvj] [Troj.Ransom.W32.Cryptodef!c] [RANSOM_CRYPWALL.YUYAHM] [BehavesLike.Win32.PWSZbot.fc] [TR/Crypt.Xpack.431887] [Ransom:Win32/Crowti.A] [Inject3.YRA] [Trj/CryptoWall.A]
70d61955b47790c63cc60ba45136d145	[Ransom.Crowti.r5] [Ransom.CryptoWall] [Uds.Dangerousobject.Multi!c] [Trojan.Inject!TiQlTNmw0FQ] [Win32/Filecoder.CryptoWall.G] [Ransom_CRYPWALL.USVNB04] [Trojan.Win32.Inject.vttq] [Trojan.Win32.ZPACK.dzyrru] [Ransom_CRYPWALL.USVNB04] [BehavesLike.Win32.AdwareLoudmo.hc] [W32/Trojan.QLNU-1504] [TR/Crypt.ZPACK.189764] [Trojan/Win32.Inject] [Ransom:Win32/Crowti.A] [RDN/Suspicious.bfr] [Trj/CI.A] [Trojan.Win32.Filecoder] [W32/Filecoder_CryptoWall.G!tr] [FileCryptor.GMW] [Trojan.Win32.CryptoWall.G]

Whois

Property	Value
NameServer	KIP.NS.CLOUDFLARE.COM
Created	2015-09-10 00:00:00
Changed	2015-09-10 00:00:00
Expires	2016-09-10 00:00:00
Registrar	TUCOWS DOMAINS INC.