Domain > ioasis.org

More information on this domain is in AlienVault OTX

Reports

https://otx.alienvault.com/pulse/56be641e67db8c71b...

https://www.virustotal.com/en/file/c132ca179787171...

Files that talk to ioasis.org

MD5	A/V
1831e9a635162ce5f44a9f78e151b14a	[BehavesLike.Win32.PWSZbot.fh] [Win32.Trojan.Bp-dropperv.Bzmy]
dd829f543fc97b6e42f24bb85ff26779	[BehavesLike.Win32.PWSZbot.hc] [Ransom:Win32/Tescrypt.H] [Trojan/Win32.Teslacrypt]
1df548f956f02d2192cef0cc683d5ac9	[Trojan.Win32.Swizzor.1!O] [Ransom.TeslaCrypt] [BehavesLike.Win32.Trojan.fh]
121c4013aa6ef2532e6ed6f208906992
6fb48630fbafa97b713d95f9662d55e2	[Trojan.Win32.Swizzor.1!O] [BehavesLike.Win32.Trojan.fh]
6e5674bc56490bf6a83c91bd80b050b4
8be1f04f6142d1ac229f1badad7c50ee
dc154f3529426b02ca7b93c184e5e1ff
6c5bdbd19a8050f767c075846cb1f98e
5836ef38d2aa4152f5787e506951048c
49ac7a17463740482232beb31124747a	[Trojan.TeslaCrypt.S] [Trojan.TeslaCrypt.S] [RDN/Ransom] [Ransom.TeslaCrypt] [Trojan.TeslaCrypt.S] [Trojan.TeslaCrypt.S] [Ransom_CRYPTESLA.SMJ3] [Trojan-Banker.Win32.Shifu.ayf] [Win32.Trojan.Bp-dropperv.Bzmy] [Trojan.TeslaCrypt.S] [Trojan.TeslaCrypt.S] [Trojan.Encoder.3862] [BehavesLike.Win32.PWSZbot.hc] [Mal/Ransom-EC] [TR/Tescrypt.561152] [Ransom:Win32/Tescrypt.H] [Trojan.TeslaCrypt.S] [Trojan/Win32.Teslacrypt] [Trj/TeslaCrypt.A] [Trojan.Win32.Crypt] [W32/Kryptik.ENOV!tr] [Ransomer.KVQ]
e555a3427a28c87e593d8383fcd9a1db
1ba9ad23fa2182f7408878545d52fd1e
3fcb8b4edbeb1f139b17632c796b80ec	[Ransom.TeslaCrypt] [Win32/Filecoder.TeslaCrypt.I] [Trojan-Banker.Win32.Shifu.bdc] [Trojan.Win32.Encoder.eagncc] [Trojan.Encoder.3887] [BehavesLike.Win32.Expiro.jc] [TR/Crypt.Xpack.395740] [Trojan[Banker]/Win32.Shifu] [Ransom:Win32/Tescrypt!rfn] [FileCryptor.GVX]
5698f8aad65f0da9c83ad3cabe2b2a98
367ec075f59201bb24fa2f129689df0f
645b802b2129d02d5b6db880bdeda3ed	[Ransom.CryptoWall] [Win32/Filecoder.TeslaCrypt.I] [Win32.Trojan.Bp-dropperv.Bzmy] [Trojan.AVKill.59867] [TR/Crypt.Xpack.395853]
6ec54696381c216d70413299dce97904	[Trojan.TeslaCrypt.S] [Artemis!6EC54696381C] [Ransom.TeslaCrypt] [Trojan.TeslaCrypt.S] [Trojan.TeslaCrypt.S] [Suspicious.Cloud.7.L] [Ransom_CRYPTESLA.SMJ3] [Trojan-Banker.Win32.Shifu.ayk] [Trojan.TeslaCrypt.S] [Trojan.TeslaCrypt.S] [Trojan.Encoder.3862] [BehavesLike.Win32.PWSZbot.hc] [Mal/Ransom-EC] [TR/Tescrypt.561152] [Ransom:Win32/Tescrypt.H] [Trojan.TeslaCrypt.S] [Trojan/Win32.Teslacrypt] [Trj/TeslaCrypt.A] [Trojan.Win32.Crypt] [W32/Kryptik.ENOV!tr] [Ransomer.KVQ] [Adware.Win32.iBryte.ENRG]
d32c7a361b507ee3594064be78ca1c06	[TrojanBanker.Shifu.r4] [Ransom-O] [Ransom.TeslaCrypt] [Trojan.Filecoder.Win32.1930] [Trojan.PWS.Shifu!] [W32/TeslaCrypt.X] [Win32/Filecoder.TeslaCrypt.I] [Ransom_CRYPTESLA.SMJ5] [Trojan-Banker.Win32.Shifu.bay] [Trojan.Win32.Encoder.eaggfh] [Troj.Banker.W32.Shifu!c] [Win32.Trojan.Bp-dropperv.Bzmy] [Trojan.Encoder.1694] [BehavesLike.Win32.PWSZbot.hc] [W32/TeslaCrypt.SQLP-3226] [Trojan.Banker.Shifu.ca] [Ransom:Win32/Tescrypt.A] [Trojan.Win32.U.TeslaCrypt.581632[h]] [Trojan.Ransom.TeslaCrypt] [Trojan.Win32.TeslaCrypt.I] [Trojan-Ransom.CryptoWall3] [W32/Shifu.BAY!tr] [FileCryptor.GVS] [Trj/Banker.SM] [Win32/Trojan.24a]
78df0be607fec7316e562bddd4d93a33	[Trojan.Ransom.APQ] [Trojan.Ransom.APQ] [Ransom.TeslaCrypt] [Trojan.Filecoder.Win32.1930] [Trojan.Ransom.APQ] [Trojan.Ransom.APQ] [Trojan.Win32.Encoder.eaggfh] [W32/TeslaCrypt.SQLP-3226] [Trojan.Randsom.A] [Win32/Filecoder.TeslaCrypt.I] [Ransom_CRYPTESLA.USVNB16] [Trojan-Banker.Win32.Shifu.bba] [Trojan.PWS.Shifu!] [Trojan.Win32.U.TeslaCrypt.581632[h]] [Win32.Trojan.Bp-dropperv.Bzmy] [Trojan.Ransom.APQ] [Trojan.Ransom.APQ] [Trojan.Encoder.1694] [Ransom_CRYPTESLA.USVNB16] [BehavesLike.Win32.PWSZbot.hc] [W32/TeslaCrypt.X] [Trojan.Banker.Shifu.ca] [TR/Crypt.Xpack.395051] [Ransom:Win32/Tescrypt.H] [Troj.Banker.W32.Shifu!c] [Trojan.Ransom.APQ] [Trojan.Ransom.APQ] [Trj/Banker.SM] [Trojan-Ransom.CryptoWall3] [W32/Shifu.BBA!tr] [FileCryptor.GVS] [Trojan.Win32.TeslaCrypt.I]

Whois

Property	Value
Name	Shane Aultman
Organization	Oasis Church
Email	shaneaultman@gmail.com
Address	5026 Locust Grove
Zip Code	75043
City	Garland
State	Texas
Country	US
Phone	+1.9722033522
NameServer	ns40.domaincontrol.com
Created	2008-11-24 22:27:40
Changed	2013-11-19 16:49:07
Expires	2018-11-24 22:27:40
Registrar	GoDaddy.com, LLC

DNS Resolutions

Date	IP Address
2016-02-11	50.62.52.1 (ClassC)
2020-05-10	208.112.115.36 (ClassC)
2024-02-14	77.83.141.16 (ClassC)
2024-04-03	34.68.234.4 (ClassC)
2025-03-20	162.159.140.166 (ClassC)
2025-07-30	15.197.132.55 (ClassC)

HTTP/1.1 200 OKCache-Control: max-age604800Content-Type: text/htmlLast-Modified: Fri, 18 Dec 2015 17:58:04 GMTAccept-Ranges: bytesETag: dfadeea4bd39d11:0Server: Microsoft-IIS/8.5Date: Sat, 08 Jun 2019

!doctype html>html langen>head>	title>Oasis Church | Select Your Campus/title>	style>		html, body {margin: 0;}		html {			background: #eaeaea; /* Old browsers */			background: -moz-linear-gradient(top, #eaeaea 0%, #aaa 100%); /* FF3.6-15 */			background: -webkit-linear-gradient(top, #eaeaea 0%,#aaa 100%); /* Chrome10-25,Safari5.1-6 */			background: linear-gradient(to bottom, #eaeaea 0%,#aaa 100%); /* W3C, IE10+, FF16+, Chrome26+, Opera12+, Safari7+ */			filter: progid:DXImageTransform.Microsoft.gradient( startColorstr#eaeaea, endColorstr#aaa,GradientType0 ); /* IE6-9 */			font-family: Helvetica Neue, Helvetica, Arial, sans-serif;			min-height: 100%; width: 100%;		}		a {text-decoration: none;}		.welcome_banner {display: block; margin: 0 auto 30px; max-width: 100%;}		.splash_logo {display: block; margin: 0 auto; max-width: 400px; width: 90%;}		.splash_select {list-style: none; margin: 0 auto 50px; padding: 0; text-align: center;}		.splash_select li {display: inline-block; margin: 0 15px 30px; text-align: center; vertical-align: middle;}		.campus_thumb {opacity: .75; transition: opacity .2s;}		.campus_title {color: #666; font-size: 1.25em; font-weight: bold; transition: color .2s;}		.campus_text {border: 2px solid #666; color: #666; font-size: 1.125em; padding: 10px 15px; text-align: center; text-transform: uppercase;}				.splash_select li:hover img {opacity: 1;}		.splash_select li:hover .campus_title {color: #333;}				@media screen and (max-width: 1023px) {			li.splash_select_1023 {display: none;}			.splash_logo {margin-bottom: 20px;}		}	/style>/head> body>	img classwelcome_banner src./images/splash-images/welcome-banner.jpg />	img classsplash_logo src./images/splash-images/splash-logo.png />		ul classsplash_select>		li>			a hrefhttp://ioasislv.org>				img classcampus_thumb campus_lakeview src./images/splash-images/campus-lakeview.png />				div classcampus_title>Lakeview Campus/div>			/a>		/li>		li classsplash_select_1023>			div classcampus_text>				div>Join us in church/div>				div>em>Click a campus/em>/div>			/div

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > ioasis.org

Is this malicious?

Reports

Files that talk to ioasis.org

Whois

DNS Resolutions

Port 80