Help RSS API Feed Maltego Contact                        

Domain > sushi-panda.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://malware-traffic-analysis.net/2016/02/03/ind...    
https://otx.alienvault.com/pulse/56affb4c4637f2355...    
https://otx.alienvault.com/pulse/56b2572767db8c168...    
https://www.virustotal.com/en/file/a5a5b9e1e629a37...    

Files that talk to sushi-panda.com

MD5A/V
2c17ca4c2e05ef0551d7618a243466f6[BehavesLike.Win32.AdwareNaviPromo.fh]
1e11810a05f1d4d1f7fe9718333c1470[Win32/TrojanDownloader.Wauchos.BD] [BehavesLike.Win32.Downloader.nc]
3dc93bb2ba66878567472215cadef2c0
fd34c32140e339f658d93664d07f19eb
201203d5caa58c3378a75a11c0f45b3e
4c3a6b40a7dbdc977f68c149278561c0[Troj.Downloader.Script!c] [VBS/Psyme] [JS/TrojanDownloader.Nemucod.DQ] [JS_CRYPLOD.YYSJR] [VBS.Downloader.877[h]] [JS_CRYPLOD.YYSJR] [Win32.Trojan.Raas.Auto]
1010c378e400d9491064e2bd0a7bebe1[Win32/Filecoder.TeslaCrypt.I]
3edb26aef68501a00a8f25a5c02d181a[VBS/Psyme] [Troj/Psyme-LW]
d3ba03f63f0e45418c4ee8a9086ff776
5e8de61ad3c0a7ae5a107769d8c51646
d6ed3ffc78e3447d8971c9b116f95fb6
ca05942d7d363c62caba7fe0c66e7770
033d7296661f1456011a34f85db7ca24[Artemis!033D7296661F] [Ransom.TeslaCrypt] [Trojan.Cryptlock.N!g2] [TROJ_FORUCON.BMC] [Trojan-Ransom.Win32.Bitman.hoc] [Trojan.Packed.29794] [TROJ_FORUCON.BMC] [BehavesLike.Win32.PWSZbot.fh] [TR/Crypt.ZPACK.192745] [Trojan[Ransom]/Win32.Bitman] [Uds.Dangerousobject.Multi!c] [Trojan/Win32.Teslacrypt] [Adware.Win32.iBryte.EMNJ] [W32/Kryptik.EMNJ!tr] [Win32/Trojan.042]
6c12cd05a7e4e0bd165afdd1859d2201[Artemis!6C12CD05A7E4] [Ransom.TeslaCrypt] [Worm.Ngrbot!uuWa+q9Hpeo] [Suspicious.Cloud.2] [TROJ_FORUCON.BMC] [Worm.Win32.Ngrbot.aycf] [Worm.Win32.A.Ngrbot.357376.D[h]] [Trojan.Inject1.56622] [TROJ_FORUCON.BMC] [BehavesLike.Win32.MysticCompressor.fh] [W32/Trojan.EXSG-0534] [TR/Crypt.ZPACK.192291] [Worm/Win32.Ngrbot] [Trojan.Zusy.D2C118] [Trojan/Win32.Upbot] [VirTool:Win32/CeeInject.GF] [Win32.Worm.Ngrbot.Wopu] [Trojan.Win32.Crypt] [W32/Ngrbot.AYCF!worm] [Crypt_r.AWG] [Adware.Win32.iBryte.EMIU]
68915163576d45b6c3c40dec12715e68
23d8d9fc07c20a3460db0c4d4e190759[BehavesLike.JS.Downloader.xv]
6d2415a6257352f383d3c9cee7f38f6d[TR/Crypt.ZPACK.192317] [Win32/Kryptik.EMIU] [Trojan.Cryptlock.N!g2] [W32/Kryptik.EMIU!tr] [Ransom*Win32/Tescrypt.A] [Ransom.TeslaCrypt] [Trojan.Win32.Crypt] [Worm.Win32.Ngrbot.aycf] [TROJ_FORUCON.BMC] [Trojan.Inject1.56622]
6e17df4b6fa3112ea4111779dee48f00[TR/Crypt.ZPACK.192328] [Win32/Kryptik.EMIU] [Crypt5.AFRJ] [Trojan.Cryptlock.N!g2] [W32/Kryptik.EMIU!tr] [Trojan.Injector] [Trojan.Win32.Crypt] [Trojan-Ransom.Win32.Bitman.hgt] [TROJ_FORUCON.BMC] [Trojan.Packed.29794]
25028c688e8ecffa042ac04fe4e6e7fc[RDN/Ransom] [TR/Crypt.ZPACK.192271] [Trojan.Cap162416.uxsb] [Win32/Kryptik.EMIU] [Crypt5.AFRX] [Trojan.Cryptolocker.N] [W32/Kryptik.EMIU!tr] [Ransom*Win32/Tescrypt.E] [Trojan.Injector] [Trojan.Win32.Crypt] [Trojan.Kryptik.Win32.860052] [Trojan-Ransom.Win32.Bitman.hdj] [W32/Dorkbot-LG] [Trojan.Packed.29794]
1766e9c85e0c2c833fb1fb5a8cdb10b9[Trojan.Inject1.56622] [W32/Dorkbot-LG] [Worm.Win32.Ngrbot.aycf] [Trojan.Win32.Crypt] [Ransom.TeslaCrypt] [Ransom*Win32/Tescrypt!rfn] [Trojan.Cryptlock.N!g2] [Crypt_r.AWG] [Win32/Kryptik.EMIU] [TR/Crypt.ZPACK.192263] [BackDoor-FDCF!1766E9C85E0C]

Whois

PropertyValue
Email Belkich@mail.ru
NameServer NS2.HOSTING.REG.RU
Created 2014-04-02 00:00:00
Changed 2015-03-29 00:00:00
Expires 2016-04-02 00:00:00
Registrar REGISTRAR OF DOMAIN

DNS Resolutions

DateIP Address
2015-11-0837.140.192.170 (ClassC)
2016-04-05194.58.56.249 (ClassC)
2016-04-15194.58.56.237 (ClassC)
2016-06-20104.130.124.96 (ClassC)
2016-07-13192.230.66.93 (ClassC)
2017-04-0845.33.9.234 (ClassC)
2017-07-2154.174.114.48 (ClassC)
2018-11-0572.52.4.119 (ClassC)
2019-03-1954.208.77.124 (ClassC)
2019-03-1935.169.58.188 (ClassC)
2019-03-26209.99.64.53 (ClassC)
2019-04-26209.99.64.52 (ClassC)
2020-03-0718.211.9.206 (ClassC)
2020-05-1023.20.239.12 (ClassC)
2025-06-2315.197.148.33 (ClassC)
2025-07-113.33.130.190 (ClassC)

Port 80

View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information