Help RSS API Feed Maltego Contact                        

Domain > zz.am

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to zz.am
MD5A/V
44e11c79d3d444fc31fce9c43c7a4c19
1be2c002967d6ac935f3202ea22d2e4e
1edf327364ea7123119f051cddff8736
9ae5af37808a595d3ec61dc42edaf6e1[Backdoor.Poison.Win32.72321] [Trojan.Kazy.DB8D09] [P2P-Worm.Win32.Palevo.hxzn] [Trojan.MulDrop6.11255] [BDS/Farfli.214208] [Backdoor:Win32/Venik.J]
b5f17279820e2f07cdaeb619c52a1577[Artemis!B5F17279820E] [Backdoor.Poison.Win32.72321] [Suspicious.Cloud.7.L] [P2P-Worm.Win32.Palevo.hxzn] [Trojan.Win32.Palevo.dydxmi] [Win32.Worm-p2p.Palevo.Phzt] [Trojan.MulDrop6.11255] [BehavesLike.Win32.Virut.dc] [BDS/Farfli.214208] [Backdoor:Win32/Venik.J] [Worm.Win32.Palevo.hxzn] [Trojan.Win32.Farfli] [W32/Palevo.BWC!worm.p2p] [Win32/Backdoor.1c1]
81313bd0b34f56a6f787301b70ddcdd1[HW32.Packed.4AA9] [Artemis!81313BD0B34F] [Trojan.Heur.RP.oCapaOAoBR] [W32/Heuristic-210!Eldorado] [Suspicious.Cloud.9] [BKDR_VENIK.USVT] [P2P-Worm.Win32.Palevo.hyik] [Packed/Exe32Pack] [Win32.Worm-p2p.Palevo.Dxcj] [Trojan.DownLoader17.60890] [BKDR_VENIK.USVT] [BehavesLike.Win32.Trojan.dc] [W32/Heuristic-210!Eldorado] [Backdoor:Win32/Venik.J] [Dropper/Win32.Banki] [Worm.Win32.Palevo.hyik] [Trojan.Win32.Farfli]
c043ddd6fccf31bd5655001c8107e8de[W32.Vetor.PE] [Virus.Win32.Virut.3!O] [W32.Virut.G] [Backdoor.Xyligan] [PE_VIRUX.R-2] [W32.Virut.CF] [Win32/Virut.NBP] [Win32:Vitro] [Win.Trojan.Xyligan-39] [Backdoor.Win32.Xyligan.ml] [Trojan.Win32.Xyligan.brxrq] [W32/Scribble-B] [Win32.Virut.56] [Virus.Virut.Win32.25] [virus.win32.sality.at] [BehavesLike.Win32.Dropper.mc] [Win32/Virut.bt] [Virus/Win32.Virut.ce] [Virus:Win32/Virut.BR] [Win32/Virut.E] [Virus.Virut.14] [Backdoor.Win32.Xyligan] [W32/Virut.CE] [Win32/DH{Fg?}] [W32/Sality.AO] [Virus.Win32.VirutChangeCall.J]
9815aa81fe2cb43f9732e1aa313751a6
10c980301bc2bdc7744a4f3ae86e14a6
df2a8629a9a13cfc84589183c2bd949e[Trojan.Simeda!576E] [BackDoor-FATP!DF2A8629A9A1] [TR/Simeda.2017286] [Trojan.BA34837894E10F94] [Win32/Farfli.XP] [W32/Farfli.TG!tr] [Backdoor*Win32/Zegost.CV] [Backdoor.Farfli] [W32/Heuristic-119!Eldorado] [Trojan-GameThief.Win32.Magania] [Trojan.Jorik.Win32.219906] [BScope.Trojan.Win32.Inject.2] [Trojan.DownLoader8.47473]
ab372ff512308c00482bffa67aa1988f
67fb89abb19eb83a11b06794e710343f[Backdoor.Win32.Undef.enq] [Win32/Small.VH] [Trojan.MulDrop3.59675] [BScope.Trojan.Win32.Inject.2] [Backdoor.Xyligan.au.n3] [Mal/Behav-001] [BKDR_SMALL.LDI] [Backdoor.Win32.Xyligan] [W32/Backdoor2.FQKT] [Backdoor.Xyligan] [Backdoor*Win32/Xyligan.A] [W32/Xyligan.AU!tr] [Backdoor.Trojan] [Backdoor.CAEC405D50266CF9]
74febc6e810cada60cf1a0319d3ac285[Win32/Smalldoor.UZ] [Trojan.DownLoader10.22140] [Trojan.ServStart.A4] [Troj/Dloadr-DNE] [WORM_NITOL.SMB] [Trojan.Win32.ServStart] [Trojan.ServStart] [DDoS*Win32/Nitol.A] [W32/ServStart.AS!tr] [Backdoor.Nitol] [Flooder.MFJ] [Win32/ServStart.AD] [Virus.EC90@2FF50FF15@124.mg] [TR/Spy.109568.200] [RDN/Downloader.a!uq] [Backdoor.Overie!486D]
a6f1e89aad7beb8df5484153228e5fa0

Whois
PropertyValue
Organization hyon jin park
Email pkquell@gmail.com
Address Yeonhwa Maeul Apt. 1416-1401, Jung 2-dong
Zip Code Gyeonggi-do
City Wonmi-gu
State Bucheon-si
Country KR
NameServer ns2.dnsze.com
Created 2014-02-09 00:00:00
Changed 2016-02-23 00:00:00
Expires 2017-02-09 00:00:00
Registrar abcdomain (ABCDomain

DNS Resolutions
DateIP Address
2014-07-14175.126.167.131 (ClassC)
2014-12-11210.151.37.130 (ClassC)
2014-12-16210.134.71.98 (ClassC)
2014-12-18210.134.71.219 (ClassC)
2014-12-1854.64.253.224 (ClassC)
2014-12-22103.241.50.55 (ClassC)
2015-03-0354.92.19.47 (ClassC)
2015-03-04110.173.56.210 (ClassC)
2015-03-1354.92.17.199 (ClassC)
2015-03-16153.254.133.171 (ClassC)
2015-03-1914.37.182.8 (ClassC)
2015-03-25153.254.133.168 (ClassC)
2015-03-25153.254.133.176 (ClassC)
2015-03-26153.254.133.132 (ClassC)
2015-04-03210.134.71.61 (ClassC)
2015-04-04221.147.39.66 (ClassC)
2015-04-06153.254.133.110 (ClassC)
2015-04-08153.254.133.141 (ClassC)
2015-04-08153.254.133.97 (ClassC)
2015-06-1852.68.213.52 (ClassC)
2015-06-2452.68.97.166 (ClassC)
2015-10-2154.199.128.20 (ClassC)
2016-01-0652.69.134.38 (ClassC)
2016-02-1152.69.195.228 (ClassC)
2016-02-2552.193.203.166 (ClassC)
2016-03-0152.192.144.153 (ClassC)
2016-04-0252.69.236.6 (ClassC)
2016-04-0952.192.188.229 (ClassC)
2016-06-0252.196.237.162 (ClassC)
2016-07-0352.192.67.1 (ClassC)
2016-12-1652.196.132.126 (ClassC)
2017-02-2513.113.24.188 (ClassC)
2017-03-1152.69.18.14 (ClassC)
2017-03-3154.230.183.123 (ClassC)
2017-04-0154.230.183.233 (ClassC)
2017-04-0252.85.125.111 (ClassC)
2017-04-0352.68.18.39 (ClassC)
2017-04-0452.85.125.24 (ClassC)
2017-04-0552.85.125.104 (ClassC)
2017-04-0652.85.125.243 (ClassC)
2017-04-0752.85.125.151 (ClassC)
2017-11-1413.114.232.92 (ClassC)
2018-01-3113.115.19.55 (ClassC)
2018-08-0552.199.225.193 (ClassC)
2018-11-2554.249.81.28 (ClassC)
2018-11-3052.79.239.127 (ClassC)
2018-12-0154.180.87.60 (ClassC)
2018-12-1135.183.51.239 (ClassC)
2019-10-2254.39.96.189 (ClassC)
2025-08-06172.104.112.214 (ClassC)
2025-08-11139.99.89.153 (ClassC)

Subdomains
DateDomainIP
aa1.zz.am2016-05-2452.192.188.229
ip.adwr35.zz.am2024-09-03255.255.255.0
guq159.zz.am2016-10-07112.157.152.153
ddoskorea.zz.am2025-05-03221.159.128.1
aassdd.zz.am2025-01-19172.104.112.214
xotjd.zz.am2025-04-2958.151.39.186
zupdate.zz.am2025-05-04139.99.89.153
hugi.zz.am2016-08-2352.192.67.1
tool.zz.am2025-04-29172.104.112.214
rohan.zz.am2025-02-18139.99.89.153
zenio.zz.am2025-08-05121.53.73.43
marto.zz.am2025-05-11139.99.89.153
ip.spr.zz.am2025-08-08255.255.255.0
sis.zz.am2025-06-01118.128.187.61
Lou.zz.am2025-05-29110.11.203.254
posu.zz.am2025-05-06172.104.112.214
www.zz.am2025-06-02172.104.112.214
yyy.zz.am2024-12-06139.99.89.153
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information