Domain > dulich.me

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

http://pastebin.com/suDVNzDB

Files that talk to dulich.me

MD5	A/V
0dcbddd89070ee56c64e58781058f0ce	[JS.Trojan-Downloader.Nemucod.oa] [Trojan.Script.Heuristic-js.iacgm] [Troj/JSDwnldr-W] [JS.DownLoader.2627] [JS/Obfus.S160] [Script.Trojan-Downloader.Locky.CQ] [JS/Nemucod.jg] [Js.Trojan.Raas.Auto] [Trojan-Ransom.Script.Locky]
6028c2f410323bb3683c155a76567f92
16b583f1cbf135bbdd7e2789e469e81c

Whois

Property	Value
Name	truong hoang xuan
Email	lienhe.deal78@gmail.com
Address	6n Cu Xa Phan Dang Luu - Binh Thanh
Zip Code	000008
City	Ho Chi Minh
State	ho chi minh
Country	VN
Phone	+84.947333338
NameServer	ns08.domaincontrol.com
Created	2016-02-21 09:14:05
Changed	2016-04-21 21:15:08
Expires	2017-02-21 09:14:05
Registrar	GoDaddy.com, LLC

DNS Resolutions

Date	IP Address
2016-03-23	125.212.251.89 (ClassC)
2016-10-11	125.212.220.114 (ClassC)
2016-11-30	61.14.232.81 (ClassC)
2016-12-21	198.252.101.236 (ClassC)
2016-12-24	45.117.78.58 (ClassC)
2018-04-21	103.82.28.14 (ClassC)
2018-05-17	125.212.220.47 (ClassC)
2018-07-30	171.244.22.80 (ClassC)
2018-12-12	45.119.213.22 (ClassC)
2019-12-12	45.117.76.166 (ClassC)
2022-03-10	34.98.99.30 (ClassC)
2022-04-07	103.130.212.57 (ClassC)
2022-05-03	103.200.23.222 (ClassC)
2024-02-23	103.130.212.60 (ClassC)
2024-03-17	13.248.213.45 (ClassC)
2024-03-29	76.223.67.189 (ClassC)
2024-08-03	70.32.1.32 (ClassC)
2025-02-23	103.224.212.215 (ClassC)
2025-06-15	103.224.182.216 (ClassC)
2025-08-09	103.75.186.13 (ClassC)

Port 80

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]