Malware > f96912972380e49d68b8fdd318252ae8

Is this malicious?

MD5	f96912972380e49d68b8fdd318252ae8
SHA1	d5847ec6af8c6f47180d14d8cea838abed9749fa
Filename	pdf_efax_message_29910432c8-1.pif
Domains	[funnyinvoiceorg.com] [marketplaceaa.com] [europe.pool.ntp.org] [update.microsoft.com] [wassthenhappa.ru] [hemfomaning.ru] [wronthenherugh.ru] [babsinthathim.ru] [somedocushare.com] [shareinvoicelib.com]
IP Addresses	[5.196.241.203] [72.47.224.85] [37.187.2.84] [65.55.50.157] [212.76.130.69] [178.32.72.224] [178.63.135.195] [65.55.50.189] [191.101.20.165] [194.177.4.1]
Antivirus	[PWS:Win32/Fareit]
	[Troj/Fareit-EY]
	[Trojan-PSW.Win32.Fareit.ayfr]
	[Trojan.Ransom.CVS]
	[Trojan.Win32.Downloader.341504.G[h]]
	[Trojan.Win32.InfoStealer.ayfr]
	[Trojan.Zbot]
	[TSPY_FAREIT.TSE]
	[W32/Kryptik.DIZS!tr]
	[W32/Trojan.IMVN-6623]

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]