Domain > mm.tocoo.jp

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to mm.tocoo.jp

MD5	A/V
ec8413c0a3918a66615ce4dd1d77cddd	[Suspicious.Cloud.5] [Kryptik.CCFN] [Win32/Waledac.eRAFYUD] [Trojan.Win32.DownLoad3.cwqgmi] [Mal/FakeAV-UF] [TrojWare.Win32.Kryptik.BZYG] [Trojan.DownLoad3.32802] [Win32.Malware!Drop] [TrojanDownloader:Win32/Waledac] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CABE] [Trojan-Downloader.Win32.Waledac] [W32/Kelihos.BDPK!tr] [Crypt3.JRX]

DNS Resolutions

Date	IP Address
2018-05-31	157.205.71.214 (ClassC)
2018-07-13	54.65.87.189 (ClassC)
2019-08-16	54.249.165.196 (ClassC)
2019-12-30	13.231.2.112 (ClassC)
2020-08-01	18.182.119.227 (ClassC)
2024-01-12	54.199.75.88 (ClassC)
2024-02-11	54.250.204.24 (ClassC)
2024-02-26	54.249.249.186 (ClassC)
2024-03-17	18.182.123.150 (ClassC)
2024-03-29	54.150.191.255 (ClassC)
2024-04-07	52.193.82.45 (ClassC)
2024-05-07	52.192.184.18 (ClassC)
2024-05-26	13.230.5.18 (ClassC)
2024-06-24	52.196.26.88 (ClassC)
2024-07-06	18.179.89.120 (ClassC)
2024-07-28	52.199.82.37 (ClassC)
2024-08-17	54.95.157.60 (ClassC)
2024-09-02	18.182.113.64 (ClassC)
2024-10-05	18.176.126.100 (ClassC)
2024-11-01	35.79.142.121 (ClassC)
2024-11-04	54.95.106.112 (ClassC)
2024-12-16	52.198.49.156 (ClassC)
2025-01-12	54.95.232.167 (ClassC)
2025-02-23	52.192.244.60 (ClassC)
2025-03-29	43.206.41.9 (ClassC)
2025-04-03	54.250.234.82 (ClassC)

Port 80

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]