Help RSS API Feed Maltego Contact                        

Domain > ip.tyk.nu

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://www.malware-traffic-analysis.net/2016/01/26...    
https://otx.alienvault.com/pulse/56a8fdce67db8c6aa...    

Files that talk to ip.tyk.nu
MD5A/V
e65ff0780f3b2fee450dc9b9cca859fd[TR/Crypt.ZPACK.210189]
0d8292c547f748ec54fa333f1c390d29[Worm.Gamarue] [Win32/Filecoder.EM] [Trojan.Win32.Yakes.onnb] [TR/Crypt.Xpack.396303] [Trojan.Midie.D170B] [Trojan/Win32.Teslacrypt] [FileCryptor.FYR]
ba2187460c46e8b13aa2bb8111fa6396[Ransom.TeslaCrypt] [Trojan-Proxy.Win32.Lethic.ddw] [Trojan.AVKill.59705] [Ransom:Win32/Tescrypt.C] [Trojan.Midie.D1798] [Trojan/Win32.Teslacrypt] [Win32.Backdoor.Zegost.Peyz] [W32/Kryptik.EKLJ!tr] [Crypt_r.ARN]
66540d2173622ba990f7b7a510abab10
ea612740556adf79dde9a11fc6ebab47
5f9901792f89abacbf8d93c45eaa692a[Ransom.FileLocker] [Trojan.Win32.Yakes.oqzj] [Trojan.AVKill.59728] [BehavesLike.Win32.MaskPEpacked.fh] [Mal/Wonton-BZ] [Trojan/Win32.Yakes] [VirTool:Win32/CeeInject.GF] [Trojan/Win32.Cryptolocker] [Trojan.Win32.Crypt] [Crypt5.ACJF]
900b693a093da57191e5e36e35244a82[Trojan-Downloader:W97M/Dridex.R] [HEUR.VBA.Trojan.d]
7cce1482771f71e45773205375a45131[BehavesLike.Win32.PWSZbot.fh]
61f847bcb69d0fe86ad7a4ba3f057be5[W32/Kryptik.EKZF!tr]
dc44690f83f8236fb83850087d65ecce[BehavesLike.Win32.Ransom.fh]
64f108a2b8fd67daa6099f0829761f0e[BehavesLike.Win32.PWSZbot.gh]
7d778bdc9080698f15e04ec1e5484c86[Trojan/PSW.OnLineGames.cbda]
1cb579be58467954f8b7d1611bb677e6[JS.Downloader.BS] [JS/Downldr.CZ1!Eldorado] [JS/Downldr.CZ1!Eldorado] [HEUR.JS.Trojan.a]
ab76e674f506a16845c1f5026d23c43b
cf5a089bf47211b2299c93458f44a031[JS.Downloader.BS] [JS/Downldr.CZ1!Eldorado] [JS/Downldr.CZ1!Eldorado] [HEUR.JS.Trojan.a]
341efc979b524ca59c257617574ae361
19c3d8ce4b652816ef249aca4ff140a3[Mal/EncPk-ABL]
3bc10ebbedcf632c86737cb79725e10c[Ransom.Crowti.G4]
665a7e105b6fd741bcb898b0b1d3f57f[JS.Downloader.BS] [JS/Downldr.CZ1!Eldorado] [JS/Downldr.CZ1!Eldorado] [HEUR.JS.Trojan.a]
9d04e4c80c7baf73d4e44e11d71216d5[Ransom.Crowti.G4]

DNS Resolutions
DateIP Address
2019-03-18144.76.253.225 (ClassC)
2025-06-0395.216.101.209 (ClassC)
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information