Help API Feed Maltego Contact                        

Malware > b2b6cd005f30e62b9a4d5b4f2f1d398e

Is this malicious?

Reports
https://totalhash.com/analysis/b0b1b34c565968db2b3...    
MD5b2b6cd005f30e62b9a4d5b4f2f1d398e
SHA1b0b1b34c565968db2b3530c7fe70abb100d0fc34
FilenameRift.exe
IPs[109.74.195.149]
IPs[204.11.56.45]
IPs[70.36.100.242]
IPs[70.36.100.243]
IPs[70.36.100.244]
IPs[208.110.80.34]
IPs[208.110.80.35]
IPs[208.110.80.36]
IPs[74.222.4.12]
IPs[74.222.4.13]
Domains   [black.nightphantom.com]
[angel.eveningquest.com]
[cheburash.com]
[ns2.romanspamer.com]
[n1.romanspamer.com]
IP Addresses   [109.74.195.149]
[204.11.56.45]
[70.36.100.242]
[70.36.100.243]
[70.36.100.244]
[208.110.80.34]
[208.110.80.35]
[208.110.80.36]
[74.222.4.12]
[74.222.4.13]
Antivirus[BackDoor.Bulknet.511]
[Mal/EncPk-AAG]
[Packed.Generic.338]
[Packed.Win32.Katusha]
[Packed.Win32.Katusha.o]
[SHeur3.CHCP]
[Trojan*Win32/Piptea.J]
[Trojan.Agent-237480]








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information