Help RSS API Feed Maltego Contact                        

Domain > theriver.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://pastebin.com/LFsgbGGG    
https://otx.alienvault.com/pulse/56200feb67db8c47d...    

Files that talk to theriver.com
MD5A/V
8e0c45d714cfb9ec425923a8167305d6
833009a54c295a72ad64ab0941f482fe[Suspicious.Cloud.5] [Kryptik.CCFN] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [TR/Crypt.EPACK.9220] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Mal/FakeAV-UF] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GIF] [Trojan.Win32.Kryptik.BZOO]
5ee74c52944265c5a84f878040e02331[HW32.CDB.27c8] [Trojan.Win32.Hlux.cxadam] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dlza] [Backdoor.Hlux!t6Evi7JomQk] [TrojWare.Win32.Kryptik.CASU] [BackDoor.Slym.13362] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Mal/FakeAV-UF] [Trojan[Backdoor]/Win32.Hlux] [VirTool:Win32/Obfuscator.WT] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.AHTW] [Win32/Kryptik.CASL] [Win32.Backdoor.Hlux.Tbjb] [Backdoor.Win32.Kelihos] [W32/Hlux.CASL!tr.bdr]
1a809031288d3e1ef3327e87dfefa861[HW32.CDB.042b] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxahyf] [Kryptik.CCFN] [Backdoor.Win32.Hlux.crc] [Backdoor.Hlux!jqpo62AJz0o] [TrojWare.Win32.Kryptik.BZOO] [BackDoor.Slym.13852] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Trojan:Win32/Sisron] [W32/Trojan.HFOT-6937] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZMB] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHF] [Win32/Trojan.337]
129893be541a5853da63c69a90dc7fa6[HW32.CDB.6488] [Packed.Win32.Katusha.3!O] [Trojan.Win32.Slym.cxvgrz] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dtmi] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13011] [VirTool:Win32/Obfuscator.WT] [Trojan/Win32.MalPacked] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBLX]
56b02dc8b8072c1f787058a56eae64f0[HW32.CDB.9b1c] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cwhrmp] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djkd] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHE] [Trojan.Win32.Kryptik.BZIX] [Win32/Trojan.ef7]

Whois
PropertyValue
NameServer NS1.SITESTAR.NET
Created 1995-06-29 00:00:00
Changed 2014-05-30 00:00:00
Expires 2015-06-28 00:00:00
Registrar TUCOWS DOMAINS INC.

DNS Resolutions
DateIP Address
2013-07-23205.209.16.21 (ClassC)
2025-08-2320.172.142.146 (ClassC)

Port 80

Port 443
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information