Help RSS API Feed Maltego Contact                        

Domain > correctip.noip.me

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://documents.trendmicro.com/assets/Cuckoo-Mine...    
http://www.fidelissecurity.com/sites/default/files...    
http://www.fidelissecurity.com/sites/default/files...    
https://otx.alienvault.com/pulse/55246d9313432a055...    
https://otx.alienvault.com/pulse/562ebd2d67db8c2a9...    
https://otx.alienvault.com/pulse/5638f23a4637f2388...    
https://otx.alienvault.com/pulse/56b8edb84637f20e8...    
https://securelist.com/securelist/files/2016/02/KL...    
https://www.fidelissecurity.com/sites/default/file...    

Files that talk to correctip.noip.me
MD5A/V
0b1fa5db3274dbae984f8d0999d47b0b[BackDoor-FCGX!Adwind] [Backdoor.Adwind] [Mal/JavaJar-A] [Backdoor:Java/Adwind.A] [Trojan:Java/Adwind.G] [Java/Adwind.FA] [Trojan.Java.Adwind]
8e25df5538d8a94d9515b1ae2a83b5b3[Exploit.Rtf.Heuristic-rtf.dinbqn] [Exploit.Rtf.CVE2012-0158] [HEUR_RTFEXP.A] [Troj/20141761-F] [Exploit.CVE-2012-0158.c] [virus.exp.20122539] [RTF/CVE120158] [Trojan.Mdropper] [EXP/Rtf.knj] [Exploit_c.ACGT]
a61bfefe49da064277a0abad3b21d31f[Java/Adwind.I] [UnclassifiedMalware] [Backdoor:Java/Adwind.A] [Java/Adwind.I] [Trojan.Java.Adwind]

Whois
PropertyValue
NameDomain Operations No-IP.com
Organization Vitalwerks Internet Solutions, LLC
Email domains@no-ip.com
Zip Code 89511
City Reno
State NV
Country US
Phone +1.7758531883
NameServer nf2.no-ip.com
Created 2008-07-18 18:36:58
Changed 2014-07-03 17:14:16
Expires 2023-07-18 18:36:58
Registrar Vitalwerks Internet