Domain > apple12.crabdance.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

http://researchcenter.paloaltonetworks.com/2016/01...

http://www.trendmicro.it/media/wp/fakem-rat-whitep...

https://otx.alienvault.com/pulse/55553e26b45ff5703...

https://otx.alienvault.com/pulse/56a5aa2867db8c6aa...

https://www.mpi-sws.org/~stevens/pubs/sec14.pdf

https://www.usenix.org/system/files/conference/use...

Files that talk to apple12.crabdance.com

MD5	A/V
73995b6557275386aa4d0239d1d96a5e
7c4068a506748654322bf4edbf6fc25d
f527a5065357c30540d933152f006fce	[Trojan*Win32/Dynamer!dtc] [TR/Symmi.25604.21]

Whois

Property	Value
Email	HOSTMASTER@AFRAID.ORG
NameServer	NS2.AFRAID.ORG
Created	2005-11-22 00:00:00
Changed	2014-10-24 00:00:00
Expires	2015-11-22 00:00:00
Registrar	ENOM, INC.