Help RSS API Feed Maltego Contact                        

Domain > itmages.ru

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://blog.dynamoo.com/2015    
https://otx.alienvault.com/pulse/55dd8ac94637f21c5...    

Files that talk to itmages.ru
MD5A/V
6710deed17793b18955da124d5e3f73f
7423484e8e1c85b7ac0966a9fddc6e9c[HEUR.VBA.Trojan]
13ff05ff1d9193ae62ee00873daf2577[HEUR.VBA.Trojan]
baf703b96ac992469b5de2d7b26a017d
65eea4af9483a03ef5181b3e2ed262b7[HEUR.VBA.Trojan]
66418b5ad5001d790e34d603fac65989[HEUR.VBA.Trojan]
8570952efd725fb98ed725049930294f
fdeb0cfbb96ed550eda060c38734503d[HEUR.VBA.Trojan]
62cc554e38752a553ebe4e554c6f3f57[HEUR.VBA.Trojan]
93e08b994b97b74ab4eca8d547983446[HEUR.VBA.Trojan]
86c13a12480322092aa813b36c6d24b3[HEUR.VBA.Trojan]
6dc75d73ba0d9ff42993b949ed7ba291[HEUR.VBA.Trojan]
982dcc74a530633095b01b5c8a8f7406[HEUR.VBA.Trojan]
b830e19318be8609531d86e0b3fb0f02[HEUR.VBA.Trojan]
94d3464107ce2edbbbc81228822c2a93[HEUR.VBA.Trojan]
c54250cc2d39698e07a27127da3d8d1b[HEUR.VBA.Trojan]
e5b00a111475eab00c57b8f148ba4524[HEUR.VBA.Trojan]
287b98d633a3f58d9507bedf4abf4613[HEUR.VBA.Trojan]
4c08ec50fbdc3a20547c3d159fced892[HEUR.VBA.Trojan]
2a131dd44421d632cce65a01c7d1fb79[HEUR.VBA.Trojan]

DNS Resolutions
DateIP Address
2012-06-1546.4.61.142 (ClassC)
2013-06-3046.4.61.131 (ClassC)
2013-11-24176.9.0.165 (ClassC)
2015-01-08178.63.21.136 (ClassC)
2019-08-05144.76.31.41 (ClassC)
2025-08-25134.209.226.143 (ClassC)
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information