Domain > greetingsjamajcaff.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://ransomwaretracker.abuse.ch/blocklist/

http://ransomwaretracker.abuse.ch/feeds/csv/

https://otx.alienvault.com/pulse/56e85de34637f24cb...

https://otx.alienvault.com/pulse/56f02c1967db8c5ce...

http://ransomwaretracker.abuse.ch/blocklist/

https://ransomwaretracker.abuse.ch/downloads/RW_UR...

Files that talk to greetingsjamajcaff.com

MD5	A/V
4227c7f125d9eca5782c067d3c55e7f6	[JS/DwnLdr-NGM] [HEUR.JS.Trojan.b] [JS/Nemucod.cs]
5e601081f9894db390c5a40ae5b6860c	[JS/Nemucod.cs] [JS.DownLoader.953] [JS/DwnLdr-NGM] [HEUR.JS.Trojan.b]
dc8184d45c756d2bb4de49577ddc97c9	[JS/Nemucod.cs] [JS.DownLoader.953] [JS/DwnLdr-NGM] [HEUR.JS.Trojan.b]
145a4db326e9b970ae3a27253670b4d8	[JS/Nemucod.cs] [HEUR.JS.Trojan.b] [JS.DownLoader.953] [JS/DwnLdr-NGM]
61fbb709e4df2c7fa8ac357150ca86b0	[HEUR.JS.Trojan.b] [JS/DwnLdr-NGM] [JS/Nemucod.cs]
b9702ac1ccc86d99e89bdc064cfb8281	[JS/DwnLdr-NGM] [HEUR.JS.Trojan.b] [JS/Nemucod.cs]
8119b480ad2c2a48ef331aa0001f0937	[JS/Nemucod.cs] [JS/Nemucod.W2!Eldorado] [JS.DownLoader.953] [JS/DwnLdr-NGM] [JS/Nemucod.W2!Eldorado] [HEUR.JS.Trojan.b]
cb2fd0a69228dfcebf3c232bccee9ba6	[JS/Nemucod.cs] [JS/DwnLdr-NGM] [JS.DownLoader.953] [HEUR.JS.Trojan.b]
1a52e0927ca4899532aa519ad02c07af	[JS/Nemucod.W2!Eldorado] [JS/DwnLdr-NGM] [JS.DownLoader.953] [JS/Nemucod.W2!Eldorado] [HEUR.JS.Trojan.b] [JS/Nemucod.cs] [Win32.Trojan.Raas.Auto]
c36fdc7b9d97b9f602a7ba96c971ae2a	[JS/Nemucod.cs] [HEUR.JS.Trojan.b] [JS/Nemucod.W2!Eldorado] [Win32.Trojan.Raas.Auto] [JS/DwnLdr-NGM] [JS/Nemucod.W2!Eldorado]
c905eca194a03c2fd1adb7d9b742acc8	[JS/Nemucod.cs] [JS/DwnLdr-NGM] [HEUR.JS.Trojan.b]
c9560a7654f59b87a4bb44974adc0849	[JS/Nemucod.cs] [HEUR.JS.Trojan.b] [JS/DwnLdr-NGM] [JS.DownLoader.953]
ff8ed1fb30d90cdca6455b0f46417fa5
f843a9b6cacf93eb7469c67c25e86626	[JS/DwnLdr-NGM] [JS.DownLoader.953] [HEUR.JS.Trojan.b] [JS/Nemucod.cs]
c87f92b97c31371a8c6fbf254623fa84	[HEUR.JS.Trojan.b] [JS.DownLoader.953] [JS/DwnLdr-NGM] [JS/Nemucod.cs]
43137dc673774cf110ffff4e10e49f1c	[JS/DwnLdr-NGM] [HEUR.JS.Trojan.b] [JS/Nemucod.cs]
dffadf9b4e5199e1817fad922ef4b7a1	[JS/DwnLdr-NGM] [HEUR.JS.Trojan.b] [JS/Nemucod.cs]
93611647d47a3b5cc6f223918f82fe06	[HEUR.JS.Trojan.b] [JS/DwnLdr-NGM] [JS/Nemucod.cs]
6e79496950cc0f894d9644589ec332d3	[JS:Trojan.JS.Downloader.DE] [JS:Trojan.JS.Downloader.DE] [JS/Nemucod.W2!Eldorado] [JS/TrojanDownloader.Nemucod.IA] [Win32.Trojan.Raas.Auto] [JS:Trojan.JS.Downloader.DE] [JS/DwnLdr-NGM] [Trojan-Downloader:JS/TeslaCrypt.C] [JS.DownLoader.953] [JS/Nemucod.W2!Eldorado] [JS/Dldr.Filecoder.137] [JS/Nemucod.HO!tr.dldr] [JS:Trojan.JS.Downloader.DE] [JS/Nemucod.cs] [Trojan-Downloader.JS.TeslaCrypt] [JS:Trojan.JS.Downloader.DE]
94fae52016703e92a0ffa0058ecd290b

Whois

Property	Value
Email	lancashire@greetingsjamajcaff.com
NameServer	NS2.SUSPENDED-DOMAIN.COM
Created	2016-03-06 00:00:00
Changed	2016-03-11 00:00:00
Expires	2017-03-06 00:00:00
Registrar	WEB COMMERCE COMMUNI