Help RSS API Feed Maltego Contact                        

Domain > buhjolk.at

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://myonlinesecurity.co.uk/caja-87889-factura-...    
https://myonlinesecurity.co.uk/caja-87889-factura-...    
https://myonlinesecurity.co.uk/caja-87889-factura-...    
https://malwrpost.wordpress.com/2016/04/21/rockloa...    
http://www.fireeye.com/blog/threat-research/2016/0...    

Files that talk to buhjolk.at

MD5A/V
2bcd76f6ef9f4cbcf5952f62b9bc8a08[Win32.Trojan.WisdomEyes.151026.9950.9990] [BehavesLike.Win32.Downloader.nh]
78fa66c846ee56dfae20e5f3edc4fed7[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
be8059ed771c561e74df9bce9654c42c[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
579bddc385fb57f10166b9597663ed3e[HEUR.VBA.Trojan.d] [W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [W97M/Downloader]
78cda8de76a04473dd93d42c680e05fc[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
4fb28c707f31652533a623a5dce6a1d9[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
9795d5ce531c3b5b146075c661456339[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [Macro.Trojan.Dropper.Auto] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
8992ce3934f99433326d909333016bb1[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [Macro.Trojan.Dropper.Auto] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
4e77b63de20ab1b6fa783bb06cec3e65[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
a054328fc36de8c1088be3b7f5af59ef[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
eca7791a483991e3c4236ddeee59f3c4[Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [PP97M/Downldr] [W97M.Downloader] [W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [Macro.Trojan.Dropper.Auto] [Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [W2KM_HP.9DF081F9] [Troj/DocDl-CBZ] [Trojan.JS.Downloader.DBY] [W97M/Downloader]
abbfb54fb574f37bd5091df52d6e1c1d[JS.Trojan.Nemucod.cn] [Trojan.Script.Nemucod.ebdqck] [Mal/JSDldr-D] [HEUR.JS.Trojan.ba]
065cb7350042f433701344a8ef721ae6
e1035adcb4f72915acb913162733c622
e19eb9c04c30de646a2e0ca91093e760[Trojan.Script.Nemucod.ebdqck] [HEUR.JS.Trojan.ba]
64f9813351816a20892409532f2f9dae
e93af2e4ceb87cb8629afbe1b30b896c
31e9143926e325860d99be9e87034423
8f93bcae837bcfb22d4e9d0c88d59eb3[Trojan.Script.Nemucod.ebdqck] [HEUR.JS.Trojan.ba]
9a83026c2791a938596c4609da29791c

Whois

PropertyValue
Email proprietress@buhjolk.at
NameServer ns2.denklouder.at
Changed 2016-04-01 16:37:55