Help RSS API Feed Maltego Contact                        

Domain > thejoe.publicvm.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

https://otx.alienvault.com/pulse/54c7e17b11d4085eb...    
https://securelist.com/blog/research/68350/the-syr...    
https://securelist.com/files/2014/08/KL_report_syr...    

Files that talk to thejoe.publicvm.com

MD5A/V
bfb902f574931aabdbd8563dc39c7776
debb0beac6414b681d050f2fbc2f2719[TR/Zapchast.155648.76] [MSIL/Injector.BYF] [Backdoor*MSIL/Bladabindi] [Trojan.MSIL.Zapchast]
012f25d09fd53aeeddc11c23902770a7[Luhe.Fiha.A]
8eda7dfa4ec4ac975bb12d2a3186bbeb[Trojan.Comrerop] [Artemis!8EDA7DFA4EC4] [Riskware] [Trojan-Ransom.Win32.Blocker.bkfc] [UnclassifiedMalware] [Trojan/Blocker.hbg] [Trojan/Win32.Blocker] [Trojan:Win32/Comrerop] [W32/Backdoor.INYK-3933] [Hoax.Blocker] [MSIL] [W32/Blocker.BKFC!tr]
12d63168bac9de71bb9142aa9cf0e533[TR/Zapchast.155648.76]
409a0b6954d4ff1000a6d7b78cde2b44
0125a39deb6c0fb37853faa9a90162d3
abf93ad254cd01997935863c9e556af8

Whois

PropertyValue
Email jchen@dnsexit.com
NameServer NS11.DNSEXIT.COM
Created 2007-07-19 00:00:00
Changed 2014-08-04 00:00:00
Expires 2015-07-19 00:00:00
Registrar NETDORM, INC. DBA DN