Domain > buhjolk.at

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://myonlinesecurity.co.uk/caja-87889-factura-...

https://malwrpost.wordpress.com/2016/04/21/rockloa...

http://www.fireeye.com/blog/threat-research/2016/0...

Files that talk to buhjolk.at

MD5	A/V
2bcd76f6ef9f4cbcf5952f62b9bc8a08	[Win32.Trojan.WisdomEyes.151026.9950.9990] [BehavesLike.Win32.Downloader.nh]
78fa66c846ee56dfae20e5f3edc4fed7	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
be8059ed771c561e74df9bce9654c42c	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
579bddc385fb57f10166b9597663ed3e	[HEUR.VBA.Trojan.d] [W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [W97M/Downloader]
78cda8de76a04473dd93d42c680e05fc	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
4fb28c707f31652533a623a5dce6a1d9	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
9795d5ce531c3b5b146075c661456339	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [Macro.Trojan.Dropper.Auto] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
8992ce3934f99433326d909333016bb1	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [Macro.Trojan.Dropper.Auto] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
4e77b63de20ab1b6fa783bb06cec3e65	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader] [Macro.Trojan.Dropper.Auto]
a054328fc36de8c1088be3b7f5af59ef	[W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [W2KM_HP.9DF081F9] [HEUR.VBA.Trojan.d] [W97M/Downloader]
eca7791a483991e3c4236ddeee59f3c4	[Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [PP97M/Downldr] [W97M.Downloader] [W2KM_HP.9DF081F9] [Trojan.Script.MLW.ebktdw] [Macro.Trojan.Dropper.Auto] [Trojan.JS.Downloader.DBY] [Trojan.JS.Downloader.DBY] [W2KM_HP.9DF081F9] [Troj/DocDl-CBZ] [Trojan.JS.Downloader.DBY] [W97M/Downloader]
abbfb54fb574f37bd5091df52d6e1c1d	[JS.Trojan.Nemucod.cn] [Trojan.Script.Nemucod.ebdqck] [Mal/JSDldr-D] [HEUR.JS.Trojan.ba]
065cb7350042f433701344a8ef721ae6
e1035adcb4f72915acb913162733c622
e19eb9c04c30de646a2e0ca91093e760	[Trojan.Script.Nemucod.ebdqck] [HEUR.JS.Trojan.ba]
64f9813351816a20892409532f2f9dae
e93af2e4ceb87cb8629afbe1b30b896c
31e9143926e325860d99be9e87034423
8f93bcae837bcfb22d4e9d0c88d59eb3	[Trojan.Script.Nemucod.ebdqck] [HEUR.JS.Trojan.ba]
9a83026c2791a938596c4609da29791c

Whois

Property	Value
Email	proprietress@buhjolk.at
NameServer	ns2.denklouder.at
Changed	2016-04-01 16:37:55