Help RSS API Feed Maltego Contact                        

Domain > ddos.zanj.cn

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://blog.malwaremustdie.org/2015/06/mmd-0035-20...    
https://otx.alienvault.com/pulse/55b05f0ab45ff5326...    

Files that talk to ddos.zanj.cn
MD5A/V
14b6600e785d3850c63ad8d99287a9e8[Trojan.Nitol.A] [Trojan.ServStart] [Worm.ServStart.Win32.38] [Posible_Worm32] [Trojan.ServStart!z3UdCSi7+40] [W32/Trojan.YDGN-4579] [Trojan.Lapka] [TROJ_NITOL.SMN1] [Rootkit.Win32.Lapka.hv] [Trojan.Win32.Gamania.ddrjbe] [Trojan.Win32.Lapka.bw] [TrojWare.Win32.Nitol.YI] [Trojan.PWS.Gamania.44384] [TROJ_NITOL.SMN1] [BehavesLike.Win32.HLLPSassy.mc] [W32/Trojan2.ONXQ] [TR/Staser.apzjs] [DDoS:Win32/Nitol.A] [Dropper/Win32.Dinwod] [BackDoor-FBOD!2F115A1F1F79] [SScope.Trojan.Unigo] [PE:Trojan.Nitol!1.9E17] [Trojan.Win32.Patcher] [W32/SDBot.BX!tr]
23a82460c614f3ab7453b63604871114[W32.FamVT.FakeLpkMVb.Worm] [Trojan/W32.Rootkit.52224.EJ] [Trojan.Nitol.A] [Trojan-FGAH!23A82460C614] [Trojan.ServStart] [Trojan/ServStart.bi] [Rootkit.Lapka!IzhaWQuUXVk] [Trojan.Lapka] [Win32/ServStart.BI] [TROJ_NITOL.SMN1] [Win.Trojan.Microfake-3] [Rootkit.Win32.Lapka.an] [Trojan.Win32.Buzus.rkatz] [PE:Trojan.HijcLpk!1.9987] [TrojWare.Win32.Farfli.AOY] [Trojan.MulDrop2.60958] [Rootkit.Lapka.Win32.701] [TROJ_NITOL.SMN1] [BehavesLike.Win32.Downloader.qm] [W32/Lapka.AN!tr] [Trojan[Rootkit]/Win32.Lapka.an] [Trojan/Win32.MicroFake] [DDoS:Win32/Nitol.A] [Win32/Nitol.PMdeWaB] [Rootkit.Lapka] [W32/Ircbot.DAC.worm] [Trojan.Win32.FakeLpk.aad] [Trojan.Win32.Patcher] [IRC/BackDoor.SdBot4.VVN] [HEUR/QVM40.1.Trojan.Win32.FakeLPK]
f287c839ed7d2fc2904def47e9ca2682
f19d27bed4fcff8199247f7a123617e1[Trojan.PWS.Gamania.44384] [DDoS*Win32/Nitol.A] [Trojan.Lapka] [Win32/Nitol.PMdeWaB] [W32/SDBot.BX!tr] [TR/Staser.apzjs] [TROJ_NITOL.SMN1] [Win.Trojan.Microfake-3] [BackDoor-FBOD!E55996DE4486] [Rootkit.Lapka.an.klat.mg] [Backdoor.Overie!486D] [Trojan.Win32.ServStart] [Rootkit.Lapka] [Mal/Behav-004] [Backdoor.CPEX.Win32.31642]

Whois
PropertyValue
Organization 西安齐力网络科技有限公司
Email 435128114@qq.com
NameServer ns2.jiasule.net