Help RSS API Feed Maltego Contact                        

Domain > aquatixbottle.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://pastebin.com/YdLgkY6V    
http://pastebin.com/YxapeYq4    
https://blog.malwarebytes.com/threat-analysis/2016...    
http://pastebin.com/YdLgkY6V    
http://pastebin.com/YxapeYq4    

Files that talk to aquatixbottle.com
MD5A/V
d915372a92378727fc02828b0d6ff6cc[Trojan.Script.Locky.ecathk] [Js.Trojan.Raas.Auto] [Trojan.DL-Obfus/JS!1.A509] [trojan.js.downloader.1]
e3fe307bc0bc6d47e380d047baf5bf23
202f59a7af3a7241c3aad44035b0274e
bd5aae499ea33c212e7cf01a027da2ac
2cc2c6b80d2ef7b96028ed3e8c14c36a
b4ba96d1d4fc3c21a77b0899c3c9ee09
991a4fd76e402940ba3e5e11dc12b994
4b78f98970166135138539c119b502dd
ca214a71a419582eeb3e8c88ac63910b[Trojan.JS.Downloader.EZR] [Trojan.JS.Downloader.EZR] [JS/Nemucod.jg] [Trojan.JS.Downloader.EZR] [JS/Nemucod.CA] [JS.Downloader] [JS/TrojanDownloader.Nemucod.AOZ] [Trojan.JS.Downloader.EZR] [Trojan.Script.Heuristic-js.iacgm] [Trojan.JS.Downloader.EZR] [Trojan.JS.Downloader.EZR] [JS.DownLoader.1910] [JS/Nemucod.jg] [Mal/JSDldr-M] [JS/Nemucod.CA] [Wsf.Crypt.a] [TrojanDownloader:JS/Swabfex.P] [Trojan.JS.Downloader.EZR] [JS/Obfus.S103] [Js.Trojan-downloader.Nemucod.Sxxp] [Win32.SuspectCrc] [Script/Virus.47f]
9e73bc1cfb96e4e0dfa3657646baf1d2[Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto]
d99ec46f79dc7a28b18beb9921c2f9b0[JS:Trojan.JS.Downloader.FHY] [JS:Trojan.JS.Downloader.FHY] [JS/TrojanDownloader.Nemucod.ASX] [JS:Trojan.JS.Downloader.FHY] [Trojan.Script.Heuristic-js.iacgm] [Troj.Downloader.Script!c] [Js.Trojan.Raas.Auto] [JS:Trojan.JS.Downloader.FHY] [JS:Trojan.JS.Downloader.FHY] [JS.DownLoader.2052] [BehavesLike.JS.Redirect.mx] [JS/DwnLdr-OID] [JS:Trojan.JS.Downloader.FHY] [Win32.SuspectCrc] [JS/Nemucod.3ED6!tr.dldr]
b9a71f2bcc770dd640b33b13aaf388a8
0832ef4c598e81db02eaca2ca12a51f6[JS:Trojan.JS.Downloader.FHY] [JS.Swabfex.SX] [JS:Trojan.JS.Downloader.FHY] [Troj.Downloader.Script!c] [JS:Trojan.JS.Downloader.FHY] [JS/TrojanDownloader.Nemucod.ASX] [JS_LOCKY.F016HQ] [JS:Trojan.JS.Downloader.FHY] [Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [JS:Trojan.JS.Downloader.FHY] [JS:Trojan.JS.Downloader.FHY] [JS.DownLoader.2052] [JS_LOCKY.F016HQ] [BehavesLike.JS.Exploit.mx] [JS/DwnLdr-OID] [JS:Trojan.JS.Downloader.FHY] [JS/Downloader] [JS/Downloader.a] [Win32.Outbreak]
1b7433b2dcee35e612fed71f31fdf8e9[W97M/Downloader.boj] [HEUR.VBA.Trojan.d] [Macro.Trojan.Dropperx.Auto] [VBS/Jenxcus.A] [virus.office.obfuscated.1]
85ade35344685d7186668d4117b17d83
944152c89eb9e567eb35125d301c67a8
be8e58a51e88ae5a98cdfdac0f6213dd

Whois
PropertyValue
NameServer NS72.DOMAINCONTROL.COM
Created 2014-02-10 00:00:00
Changed 2016-02-11 00:00:00
Expires 2017-02-10 00:00:00
Registrar GODADDY.COM, LLC