Domain > wilcarobbe.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

https://www.us-cert.gov/security-publications/GRIZ...

Files that talk to wilcarobbe.com

MD5	A/V
ae38389caf1143dd71719265327f764d
e1c27e9a7888dc35e8d07282eebe905d
ab620a209c5f85f02e9d9339b7cf6853
f79ec84df5c3eed2d15d3ed38b46eacf
2078ad3263d8f3fa596bb665229944e1
f9467d49992cac0f9970f1a9db5bb922	[W97M.Dropper.DL] [W97M.Dropper.DL] [W97M/Dropper] [W2KM_FAREIT.DDZ] [Trojan.Script.Stealer.ebqncn] [W97M.Dropper.DL] [Troj/DocDl-CIU] [W97M.Dropper.DL] [W2KM_FAREIT.DDZ] [Artemis!617BA99BE8A7] [TR/AD.Fareit.Y.ehkw] [TrojanDropper:O97M/Farheyt.C] [HEUR.VBA.Trojan.e] [W97M.Dropper.DL] [Trojan/Win32.Fareit] [Artemis!617BA99BE8A7] [WM/Fareit.GTZ!tr] [virus.office.obfuscated.1]
29bdd6a89bdc9395c4ef4dec4070ff49	[W97M.Dropper.DL] [W97M.Dropper.DL] [W2KM_FAREIT.DDZ] [Trojan.Script.Stealer.ebqncn] [W97M.Dropper.DL] [Troj/DocDl-CIU] [W97M.Dropper.DL] [W2KM_FAREIT.DDZ] [Artemis!CA82B694C2E0] [W97M/Dropper] [TrojanDropper:O97M/Farheyt.C] [HEUR.VBA.Trojan.e] [W97M.Dropper.DL] [Artemis!CA82B694C2E0] [WM/Fareit.GTZ!tr] [virus.office.obfuscated.1]
b26fd5a28ea806cff9520f3ecf68f892	[HW32.Packed.C0D7] [Trojan.Crypt.RV] [BehavesLike.Win32.Expiro.cc] [Troj.Ransom.W32.Foreign.mEqY]
686b382cce63429815392a00343a4145
de06980545f05a1b2c3edb1568cdbead
1fdc47e427a55e0812f5fdf91f7fba65
13071d1ea4f9cd9cb0141a68d410f5d2
f337def4a68521ae69b8a22acab2532b
617ba99be8a7d0771628344d209e9d8a	[Trojan.PasswordStealer] [Trojan.Fareit.Win32.14782] [TSPY_FAREIT.YYTDL] [Win32.Trojan.Kryptik.abe] [W32/Dridex.HX] [Trojan.Contwoo] [TSPY_FAREIT.YYTDL] [Trojan-PSW.Win32.Fareit.bshk] [Trojan.Win32.AD.ebscsw] [Trojan.Win32.Z.Fareit.117248.B[h]] [Uds.Dangerousobject.Multi!c] [TrojWare.Win32.Spy.Fareit.a] [Trojan.PWS.Stealer.4118] [virus.win32.viking.ng] [BehavesLike.Win32.Expiro.ch] [Troj/Fareit-AMQ] [W32/Dridex.GOZF-3225] [TR/AD.Fareit.Y.ehkw] [Trojan[PSW]/Win32.Fareit] [Trojan.Razy.DA10E] [PWS:Win32/Fareit] [Trojan/Win32.Fareit.C1384947] [TrojanPSW.Fareit] [Win32.Trojan-qqpass.Qqrob.Wmsx] [Trojan.PWS.Fareit!fHCtrfOxga8] [Trojan.Win32.Zlader] [W32/Kryptik.EPKG!tr] [Crypt5.AYWX] [Trj/GdSda.A]

Whois

Property	Value
Email	arsen.ramzanov@yandex.ru
NameServer	NS3.XTREMEWEB.DE
Created	2016-04-11 00:00:00
Changed	2016-04-11 00:00:00
Expires	2017-04-11 00:00:00
Registrar	BIZCN.COM, INC.