Domain > ilkhaberadana.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

http://pastebin.com/YdLgkY6V

http://pastebin.com/YxapeYq4

http://pastebin.com/YdLgkY6V

http://pastebin.com/YxapeYq4

Files that talk to ilkhaberadana.com

MD5	A/V
e6e97b93766eb54faf76bbfcec03cba4
d8d3dedae51a92c11966395d0487e88e
62854eb6105c3338ce6a5c63bea878b4
4b9ae2ebf469f64a46599c824bae7a9c	[JS.Trojan-Downloader.Nemucod.cw] [JS/Locky.AO2!Eldorado] [JS.Downloader] [JS_NEMUCOD.DLDSAMT] [Trojan.Script.Heuristic-js.iacgm] [Troj/JSDldr-RI] [JS.DownLoader.1899] [JS_NEMUCOD.DLDSAMT] [JS/Locky.AO2!Eldorado] [JS/Nemucod.AOT!tr] [HEUR.JS.Trojan.b] [JS/Obfus.S102] [TrojanDownloader:JS/Swabfex.P] [Js.Trojan.Raas.Auto] [Win32.SuspectCrc] [trojan.js.downloader.2]
f5db82a7915b4240edee2ad8c1c46250
4c921e76cf81b533d916f776799857ea	[JS/Locky.AT] [Trojan.Script.Heuristic-js.iacgm] [BehavesLike.JS.ExploitBlacole.qx] [JS/Locky.AT] [Js.Trojan.Raas.Auto]
e9f239bcfed988736de8e6bd4b71f35a	[JS:Trojan.Downloader.Nemucod.AX] [JS/Locky.AT] [Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [BehavesLike.JS.ExploitBlacole.qx] [Troj/JsDwnLdr-T] [JS/Locky.AT]
4a8bd5187b1007aedbe65a311bbc18b4	[JS:Trojan.Downloader.Nemucod.AX] [JS:Trojan.Downloader.Nemucod.AX] [JS/Locky.AT] [JS/TrojanDownloader.Nemucod.ASO] [JS:Trojan.Downloader.Nemucod.AX] [Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [JS:Trojan.Downloader.Nemucod.AX] [JS:Trojan.Downloader.Nemucod.AX] [BehavesLike.JS.ExploitBlacole.qx] [Troj/JsDwnLdr-T] [JS/Locky.AT] [JS:Trojan.Downloader.Nemucod.AX]
ea73462b014a0018004198f17a674d3c
9f56e4fa872ed0ef290805377a2e1dc6	[JS:Trojan.Downloader.Nemucod.AX] [JS/Locky.AT] [JS.Downloader] [JS/TrojanDownloader.Nemucod.ASO] [JS:Trojan.Downloader.Nemucod.AX] [Trojan.Script.Heuristic-js.iacgm] [JS:Trojan.Downloader.Nemucod.AX] [Troj/JsDwnLdr-T] [JS:Trojan.Downloader.Nemucod.AX] [JS.DownLoader.2036] [BehavesLike.JS.ExploitBlacole.qx] [JS/Locky.AT] [JS/Dldr.Locky.71191] [JS:Trojan.Downloader.Nemucod.AX] [Js.Troj.Downloader!c] [Js.Trojan.Raas.Auto] [Win32.SuspectCrc] [JS:Trojan.Downloader.Nemucod.AX]
81eec11c16d4e87a4a414471cb418cf5	[JS:Trojan.Downloader.Nemucod.AX] [JS/Locky.AT] [JS/TrojanDownloader.Nemucod.ASO] [JS:Trojan.Downloader.Nemucod.AX] [Trojan.Script.Heuristic-js.iacgm] [JS:Trojan.Downloader.Nemucod.AX] [JS:Trojan.Downloader.Nemucod.AX] [BehavesLike.JS.ExploitBlacole.qx] [Troj/JsDwnLdr-T] [JS/Locky.AT] [JS:Trojan.Downloader.Nemucod.AX] [JS:Trojan.Downloader.Nemucod.AX]
228a18e15605b27fc8789e58e6c570b6	[Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto]
ccb41d839e644730681e552b7dd4abba	[Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [JS/Nemucod.3ED6!tr.dldr]
4fbe370e5317378b394bef8aa9c44542	[Trojan.Script.Heuristic-js.iacgm]
51abd39dae68601bdb3c3cb06ab16024
b9a71f2bcc770dd640b33b13aaf388a8
c5974087f95a6a6d62eca366d1a5cfcc

Whois

Property	Value
NameServer	NS2.MAGNETHOSTING.NET
Created	2009-12-09 00:00:00
Changed	2015-12-15 00:00:00
Expires	2016-12-09 00:00:00
Registrar	GODADDY.COM, LLC