Help RSS API Feed Maltego Contact

Domain > bicyclereply.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://blog.talosintel.com/2016/02/bedep-actor.htm...

https://otx.alienvault.com/pulse/56ba694867db8c168...

Files that talk to bicyclereply.com

MD5	A/V
78001057b47b32bc9631583ae9d78a05	[Trojan.MSIL.ED] [Trojan.Zbot] [Trojan.DownLoader12.61139] [TR/Injector.145408.7] [Trojan:Win32/Matsnu.O] [Artemis!78001057B47B] [Trojan.MSIL.Injector] [MSIL7.BRZG] [Trojan.MSIL.Injector.JDO]
d9dddf8cf08a4f4fb348bd11535e3d02	[Trojan.Zbot] [Trojan.Win32.Prek.jc] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Heur.Packed.Unknown] [Win32/Trustezeb.K] [Trojan.Inject] [Trojan.Win32.Trustezeb.K]
666fe7d2b34222c736a26e45f8f0b174	[HW32.Packed.54E9] [Heur.Packed.Unknown] [Win32/Trustezeb.K]
8002d7002cd185aad421af0416e26c1c
f923d2beb40e4ad03eccb1060e2dc12d	[Malware] [Artemis!F923D2BEB40E] [Win32/Trustezeb.K] [PE:Malware.Obscure/Heur!1.9E03] [Win32.Outbreak]
e5b574931a232c6a06dc4217e66e48e6	[HW32.Packed.8B14] [Trojan.Zbot] [TROJ_TRUSTEZEB.ENE] [Backdoor.Win32.Androm.grdz] [PE:Malware.XPACK-HIE/Heur!1.9C48] [TR/Matsnu.A.264] [Artemis!E5B574931A23] [Win32/Trustezeb.K] [Trojan.Inject] [W32/Trustezeb.K!tr] [Boxed.DSE]
8104b1a7881e132d686bb0c1b7508815	[Trojan.Zbot] [BKDR_ANDROM.YUYCC] [Backdoor.Win32.Androm.gqck]
b663add7f1280e108f292a3bb3646d6f	[HW32.Packed.E7AB] [Trojan/W32.Yakes.138240.C] [Trojan.Dropper.FAV] [Trojan.Zbot] [Trojan.Win32.Yakes.kluk] [Trojan.Win32.Yakes.dqyqzn] [Trojan.Win32.A.Yakes.138240.D[h]] [Heur.Packed.Unknown] [TR/Crypt.EPACK.33743] [Trojan:Win32/Matsnu.O] [Win32/Trustezeb.K] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Trojan-Ransom.CryptoWall3] [Boxed.DSJ]
aad2e98d6cbf095b70c0f5b291b4d779	[HW32.Packed.D53E] [Artemis!AAD2E98D6CBF] [Suspicious.Cloud.5] [Backdoor.Win32.Matsnu.at] [BehavesLike.Win32.Worm.ch] [TR/Crypt.EPACK.33918] [Backdoor.Win32.Matsnu.at] [Trojan.Inject] [Win32/Heim]

Whois

Property	Value
Email	yingw90@yahoo.com
NameServer	NS1.MYPROPULSION.NET
Created	2015-04-17 00:00:00
Changed	2015-04-22 00:00:00
Expires	2016-04-17 00:00:00
Registrar	DOMAINCONTEXT, INC.

DNS Resolutions

Date	IP Address
2015-04-20	46.45.182.25 (ClassC)
2015-04-21	31.210.112.79 (ClassC)
2015-04-21	31.210.125.242 (ClassC)
2015-04-21	37.123.103.36 (ClassC)
2015-04-21	210.51.3.60 (ClassC)
2015-04-21	54.148.235.229 (ClassC)
2015-04-22	160.16.119.14 (ClassC)
2015-04-23
2025-12-16	216.218.185.162 (ClassC)

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information