Domain > laterrazzafiorita.it

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://isc.sans.edu/forums/diary/Malicious spam w...

https://otx.alienvault.com/pulse/55f9d1d167db8c6fb...

Files that talk to laterrazzafiorita.it

MD5	A/V
ff637cde2da47a3ea25b99b54593d0e6
38076a3679944415b9e1b5127221c913
0eb15427ceeaadac60aa270eb46cb227	[JS.Downloader.Q] [Troj/JSDldr-AF] [SCRIPT.Virus] [JS/TrojanDownloader.Nemucod.AJ] [JS/Nemucod.AJ!tr.dldr]
df19895d039ae361fe38b9ae36637f1b	[JS.Downloader.Q] [SCRIPT.Virus] [Troj/JSDldr-AF] [JS/TrojanDownloader.Nemucod.AJ] [JS/Nemucod.AJ!tr.dldr]
d871c485a57b4ad2d806317c5bbb934c	[JS.Downloader.Q] [SCRIPT.Virus] [JS/TrojanDownloader.Nemucod.AJ] [JS/Nemucod.AJ!tr.dldr]
135f0234c87f881cd388cdc7a721f2f5
7e5bfeb1125e2ff5407a3c0cf62b6c24	[JS:Trojan.Crypt.NO] [JS:Trojan.Crypt.NO] [JS:Trojan.Crypt.NO] [JS:Trojan.Crypt.NO] [JS/TrojanDownloader.Nemucod.AV] [JS:Trojan.Crypt.NO] [NORMAL:Trojan.DL.Script.JS.Nemucod.b!1616509[F1]] [JS:Trojan.Crypt.NO] [Troj/JSDldr-AF] [JS:Trojan.Crypt.NO] [SCRIPT.Virus] [BehavesLike.JS.Exploit.xv] [JS:Trojan.Crypt.NO] [JS/Nemucod.i] [JS/Nemucod.AV!tr]
654c5e8b0cfc4e981ffdd936ba4855dd
1d15d0d2d5fd27aa8265711938d4d921
c1236e7756393b463897377f0ba2191b	[SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [Troj/JSDldr-AF] [JS/Nemucod.AV!tr]
f78a6be2df60a74a7443677b06b0b531	[SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [Troj/JSDldr-AF] [JS/Nemucod.AV!tr]
1342c3b045e5b7eec383540c318da1d9	[SCRIPT.Virus] [Troj/JSDldr-AF] [JS/Nemucod.AV!tr]
2cb94bc760ae6d496abb989d763c7f1c	[JS.Downloader.AD] [JS/DwnLdr-MON] [JS/Nemucod.AV!tr]
dd49d6dc210b451455bf5aa66ae171e3	[JS.Downloader.AD] [JS/TrojanDownloader.Nemucod.BA] [JS/DwnLdr-MON] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [Script.Trojan-Downloader.Nemucod.K] [JS/Nemucod.AV!tr]
cdc05936591ea0339bd48afb142d601e
425e8e25eb769848cc345d7fa78c7336	[JS.Downloader.AD] [HEUR.JS.Trojan-Downloader] [JS/TrojanDownloader.Nemucod.BA] [JS/DwnLdr-MON] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [TrojanDownloader:JS/Nemucod.P] [JS/Nemucod.AV!tr]
65f0b2c09f47c63ccd8412f1fa642ae7
4eb62df8d072ab1f35b3c36a9d623ff4	[JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS.Downloader.AD] [JS/TrojanDownloader.Nemucod.BA] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [JS/DwnLdr-MON] [TrojanDownloader:JS/Nemucod.P] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS/Nemucod.AV!tr]
7123be04b7d626a7bc8dfc5f32d0dafe	[JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS.Downloader.AD] [JS/TrojanDownloader.Nemucod.BA] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [JS/DwnLdr-MON] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS/Nemucod.AV!tr]

Whois

Property	Value
Organization	Moreno Merlino
Address	Via Istria, 10
Zip Code	07041
City	Alghero
State	SS
Country	IT
NameServer	dns5.vaisulweb.it
Created	2008-11-26 09:36:26
Changed	2014-12-12 00:45:24
Expires	2015-11-26 00:00:00
Registrar	Netcore s.r.l.