Domain > zsn5qtrgfpu4tmpg.tor2web.org

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to zsn5qtrgfpu4tmpg.tor2web.org

MD5	A/V
2d256fef9468d2942fdf03d4d3e9a40b
1f6493b1d55c7e25a5f4b475f93aae24	[HW32.Packed.D064] [Trojan.Vimditator.Win32.70] [Trojan.Win32.Encoder.dnmzyt] [Trojan.Cryptolocker!g6] [TROJ_CRYPCBT.SMA] [Trojan-Ransom.Win32.Onion.dh] [Virus.Win32.Heur.c] [Trojan.Encoder.858] [BehavesLike.Win32.Dreform.jc] [Mal/Harnig-B] [Trojan/Vimditator.av] [Trojan/Win32.Vimditator] [Ransom:Win32/Critroni.B] [Ransom-FTX!1F6493B1D55C] [SScope.TrojanRansom.Crytroni] [PE:Malware.XPACK-HIE/Heur!1.9C48] [FileCryptor.VK] [Win32.Trojan.Onion.Eaxo] [Trojan.Win32.Filecoder.DA] [Trojan.FileCryptor] [W32/Filecoder.B!tr] [Win32/Trojan.49b]
9f3eb8e3c27ebf91e06f980bfe23d708
92d36103bba95252bfd31667151fb5e1	[Win32/Injector.CHVS] [Trojan-Ransom.NSIS.Onion.has] [TR/AD.CTBLocker.Y.12] [W32/CHVS!tr] [Trojan.NSIS.Ransom.has]
edaf914498453eea75afb1ce418e8430	[Trojan.Injector] [Trojan.Strictor.D189F7] [Backdoor.Win32.Androm.iuny] [Mal/Zbot-UH] [Trojan.Encoder.3181] [BehavesLike.PWSZbot.bc] [Ransom:Win32/Critroni] [Backdoor.Win32.Androm.iuny] [Win32.Trojan.Inject.Auto] [Evilware.Outbreak] [W32/Injector.CNZD!tr]
e4585d6526838978df26a6b31c0ddd0f	[HW32.Packed.4BFD] [W32/Heuristic-300!Eldorado] [Suspect.DoubleExtension-zippwd-15] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [BehavesLike.Downloader.bc] [W32/Heuristic-300!Eldorado] [Archive.Malware.FakeExt.N@susp] [FakeAlert]
50409d8c532f6b9ad43deb90a6a7f5d5	[HW32.Packed.C3D6] [BehavesLike.Win32.Fednu.jc] [W32/Trojan.MYET-4320] [Artemis!50409D8C532F]
8ba886b29a7ae88a0134d2112b9c141a	[HW32.Packed.A872] [W32/Heuristic-300!Eldorado] [Suspect.DoubleExtension-zippwd-15] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [BehavesLike.Fednu.jc] [W32/Heuristic-300!Eldorado] [FakeAlert]
da0ca53c70ee73e9791afde3907362f2	[HW32.Packed.A872] [BehavesLike.Win32.Fednu.jc]
30db9707eaaf67d768fa6330db500e3c	[W32/Heuristic-300!Eldorado] [Suspect.DoubleExtension-zippwd-15] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [ZIP/Bredolab.A!Camelot] [Archive.Malware.FakeExt.N@susp] [FakeAlert]
125f336f9d3378eeb4f669dbb55d2895	[HW32.Packed.FD44] [Suspicious.Cloud.2] [Troj/Ransom-BXL] [BehavesLike.Win32.Rontokbro.jc] [W32/Trojan.VXAJ-2000] [TR/Dropper.VB.45591] [Artemis!125F336F9D33] [Win32/Filecoder.DA] [Win32.Outbreak]
f2ace53e8c56a7228327052255395c11	[HW32.Packed.48A1] [Artemis!F2ACE53E8C56] [Suspicious.Cloud.5] [BehavesLike.Win32.Downloader.jc]
46de94b15a500c80d4280bf8348595dd	[Heur.Win32.VBKrypt.1!O] [Trojan.A]
0c6e703e158001e98cc9b1e2443342b1
71edd7efc0538dab7d4674593c827c39	[W32.Parite] [Troj/Ransom-BXO] [TR/Crypt.Xpack.438971] [Win32.Trojan.Inject.Auto] [Win32.Outbreak]
ee2b6c9f65511ada0f9bcac15dcfa82f	[Artemis!40CE00566109] [W32/Heuristic-300!Eldorado] [Suspect.DoubleExtension-zippwd-15] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [Artemis] [W32/Heuristic-300!Eldorado] [Troj.Spy.W32.Zbot] [Win32.Trojan.Inject.Auto] [FakeAlert]
3eee2f067500bd40fd6ad7e073ef0395	[Artemis!3EEE2F067500] [Ransom.CTBLocker] [Suspicious.Cloud.5] [Troj/Ransom-CFX] [BehavesLike.Win32.Trojan.bc] [TR/Crypt.Xpack.401024] [Trojan[Ransom]/Win32.Cryptor] [Win32.Trojan.Inject.Auto] [Win32.Outbreak]
8b19b6588b96f8ff0a64dc9beb531fd7	[BehavesLike.Win32.PWSZbot.cc]
3169d6568eb3188b992422a5e2e1c431	[W32/Heuristic-300!Eldorado] [Zip.Suspect.DoubleExtension-zippwd] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [W32/Heuristic-300!Eldorado] [Win32.Trojan.Inject.Auto] [FakeAlert]
b0559c678dded7068d65819eadebad70	[W32/Heuristic-300!Eldorado] [Zip.Suspect.DoubleExtension-zippwd] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [BehavesLike.Trojan.bc] [W32/Heuristic-300!Eldorado] [Backdoor.Androm.dyt] [Troj.W32.Inject] [Win32.Trojan.Inject.Auto] [FakeAlert]

Whois

Property	Value
Name	Virgil Griffith
Email	59ccf6a4d4ed6d960dd23cde3402293b-960908@contact.gandi.net
Zip Code	75013
City	Paris
Country	FR
Phone	+33.170377666
Fax	+33.143730576
NameServer	b.dns.gandi.net
Created	2008-11-05 00:22:31
Changed	2014-10-21 01:54:10
Expires	2015-11-05 00:22:31
Registrar	Gandi SAS (R42-LROR)