Help
API
Feed
Maltego
Contact
Malware > 9844a1b8a10ed4568240ae7a528bef5d
×
Welcome!
Right click nodes and scroll the mouse to navigate the graph.
Is this malicious?
Yes
No
Reports
http://malwr.com/analysis/NmVkMWQ5Y2U1ZTAyNGNmNTk1...
https://www.virustotal.com/file/da281c8897f1f1f24d...
MD5
9844a1b8a10ed4568240ae7a528bef5d
SHA1
eb2ec65a34430f25efbc11ca40e399cb9702b971
Filename
mentalc.exe
IPs
[
188.244.24.199
]
IPs
[
178.149.71.199
]
IPs
[
95.42.124.199
]
IPs
[
212.21.16.201
]
IPs
[
109.75.46.203
]
IPs
[
109.229.170.0
]
IPs
[
95.85.190.1
]
IPs
[
91.241.181.2
]
IPs
[
188.231.135.8
]
IPs
[
91.241.104.9
]
IPs
[
178.132.158.97
]
IPs
[
46.119.181.244
]
IPs
[
84.125.94.155
]
IPs
[
5.1.20.252
]
IPs
[
46.244.0.4
]
IPs
[
117.240.116.242
]
IPs
[
77.37.183.180
]
IPs
[
134.19.251.161
]
IPs
[
217.30.193.218
]
IPs
[
176.113.228.98
]
IPs
[
46.118.128.84
]
IPs
[
65.55.3
]
Domains
[
gorotza.biz
]
[
mchsi.com
]
[
verizon.com
]
[
coqui.net
]
[
bellsouth.net
]
[
sprintpcs.com
]
[
yahoo.com
]
[
hotmail.com
]
[
centurylink.com
]
[
gate.net
]
IP Addresses
[
188.244.24.199
]
[
178.149.71.199
]
[
95.42.124.199
]
[
212.21.16.201
]
[
109.75.46.203
]
[
109.229.170.0
]
[
95.85.190.1
]
[
91.241.181.2
]
[
188.231.135.8
]
[
91.241.104.9
]
Antivirus
[
Backdoor.Kelihos
]
[
Backdoor.Kelihos.F3
]
[
BackDoor.Slym.13304
]
[
Backdoor:Win32/Kelihos
]
[
Generic-FAOM!9844A1B8A10E
]
[
Heur.Trojan.Hlux
]
[
HW32.CDB.Bf28
]
[
HW32.Packed.BF28
]
[
Kryptik.CCFN
]
[
Mal/Kelihos-A
]
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]