Help RSS API Feed Maltego Contact                        

Domain > 3wzn5p2yiumh7akj.effectwaytopay.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://kernelmode.info/forum/viewtopic.php?f=16    
http://malwarefor.me/2015-12-01-angler-ek-sending-...    
http://www.bleepingcomputer.com/forums/t/595215/cr...    
http://www.bleepingcomputer.com/news/security/cryp...    
https://otx.alienvault.com/pulse/563a28954637f2388...    
https://otx.alienvault.com/pulse/565f7d164637f2388...    

Files that talk to 3wzn5p2yiumh7akj.effectwaytopay.com
MD5A/V
b6bd59f1da456fde221f5f0c544d38bc[HW32.Packed.BAC6] [Trojan/Win32.Inject]
878ce91000eef46fec4b86f41220b55c
24a639c07cb469accba8941f3b7ceed1
c4cc7deb15f806a5672f65879f85b4f4[Trojan.Cryptodefense] [TROJ_ZBOT.YUYAEE] [TROJ_ZBOT.YUYAEE] [Mal/Ransom-DK] [Trj/CryptoWall.A] [Win32.Trojan.Crypt.Szlk]
1476a80927c07189e6933fe02e71edab
dcba2299f97fc7bdfd16bf849bcecb5a
2f7f5ab9243823798e29cac3fe6e07b7
31bdef58be9c8b51e76c97417dcd03fa
dda7e06a6a987a8e10031d1d8797b457
338defcab008362265885efc84b66c64[HW32.Packed.B59D] [Suspicious.Cloud.5] [BehavesLike.Win32.PWSTravNet.dh]
19797e6f12dec178b989d6656e90a1d2[HW32.Packed.7DE3]
c34f3adc853d951bc8cddfb917870281[Trojan.Script.Cryptoload.dytbfx] [JS_CRYPLOD.SMA] [JS_CRYPLOD.SMA] [Troj/JsDwnldr-F]
4006e5ff33256d2a0baadf45d91c0d3b
4aa5b40728b82ccaa8518341a06050eb
35e0392dad1cab4db3e78fccc70f7f04
05bad84ba85d1713466c0dbb1f9d7fc9
1e807539a39b9f9560e5cb81372d113e
74f5f35ac1e7be9f95bd0888bcb24444
7fcb82265e469b79127845b190335561
8ee1989c64f51b46c74ea0216d696e1e

Whois
PropertyValue
Email clicrepoupasco1970@mail.ru
NameServer NS2.SELECTEL.ORG
Created 2015-10-26 00:00:00
Changed 2015-12-17 00:00:00
Expires 2016-10-26 00:00:00
Registrar REGIONAL NETWORK INF