Help RSS API Feed Maltego Contact                        

Domain > sh.chromeenter.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
https://raw.githubusercontent.com/fireeye/pivy-rep...    
https://www.fireeye.com/resources/pdfs/fireeye-poi...    

Files that talk to sh.chromeenter.com
MD5A/V
e6ca06e9b000933567a8604300094a85[Backdoor*Win32/Poison.AP] [BackDoor!fqg] [W32.Clod9e2.Trojan.f7fb] [Trojan.Loader.CY] [W32/Trojan2.MIBZ] [Infostealer.Gampass] [Win32/Gamepass.OPU] [Trojan.Poison!UTHm0qUpSz0] [Mal/Bckdr-J] [Heur.Suspicious] [Trojan.DownLoader1.34841] [TR/Loader.CY.2] [Backdoor:Win32/Poison.AP] [W32/Trojan.OCJR-4277]
76b744382cdc455f8b20542de34493d2[W32.Clod424.Trojan.d5b9] [Trojan.Loader.CY] [Artemis!76B744382CDC] [W32/Trojan2.MIBZ] [Infostealer.Gampass] [BDS/Poisonivy.E.458] [Mal/Bckdr-J] [Backdoor:Win32/Poison.E] [W32/Trojan.OCJR-4277]

Whois
PropertyValue
Email admin@newvcorp.com
NameServer NS2626.ZTOMY.COM
Created 2014-09-12 00:00:00
Changed 2014-09-19 00:00:00
Expires 2015-09-12 00:00:00
Registrar DOMAINSURGEON.COM LL