Help RSS API Feed Maltego Contact                        

Domain > kochstudiomaashof.de

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://blog.dynamoo.com/2015/12/malware-spam-invoi...    
https://otx.alienvault.com/pulse/566a129f67db8c0fd...    
https://otx.alienvault.com/pulse/566b30ea67db8c0fd...    
https://otx.alienvault.com/pulse/566b34e567db8c0fd...    
https://techhelplist.com/spam-list/1002-payment-re...    
https://techhelplist.com/spam-list/1003-invoice-ou...    

Files that talk to kochstudiomaashof.de
MD5A/V
a97e60f581890bb9d3cb44fcde1f7278[JS/TrojanDownloader.Nemucod.CI] [BehavesLike.JS.ExploitBlacole.zv]
53690c78f4526292e0982446c009c71f[JS_NEMUCOD.XXZA] [JS_NEMUCOD.XXZA] [BehavesLike.JS.ExploitBlacole.lv] [Troj/JSDown-BG]
8546bf6a5ad33f6d7e406cc05b89ede1[HW32.Packed.E7DB] [Win32/Heim]
6d82ee0b60131d52725e83c6da3fb502[HW32.Packed.15A6] [Win32/Heim]
453d4821854bb7e69d9560b8c6a4fabb[JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [Trojan-Downloader.JS.Cryptoload.at] [JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [BehavesLike.JS.ExploitBlacole.zv] [Troj/Dloadr-EAH] [JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [JS/TrojanDownloader.Nemucod.CI] [Win32.Outbreak] [JS/Nemucod.CI!tr]
9ae8adba4d9020f62f508354c383e056
44a83d0c23d0dfa37969c7b191085499[HW32.Packed.BB1A]
a9afec600ada9befd64feacf13f3f5f2[HW32.Packed.3786]
8bbd1e2af9056a192912d6cc41e224e4[JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [JS/TrojanDownloader.Nemucod.CI] [Trojan-Downloader.JS.Cryptoload.at] [BehavesLike.JS.ExploitBlacole.zv] [JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [JS/Nemucod.CI!tr]
d65838fcc90378f965f642c5aa524fd4[HW32.Packed.8F1D]
69112318fb10e54c4e40e96e05d6b680[BehavesLike.JS.ExploitBlacole.lv]
ca2c089556a70d1451ed344bec6f17a3[HW32.Packed.4B0D]
737d52ad2640bc151e8ba583bb3c4eaa[Troj/JSDown-BG] [BehavesLike.JS.ExploitBlacole.lv] [JS/TrojanDownloader.Nemucod.CJ] [JS/Nemucod.DTTU!tr]
ad77c28d05b28376167ca9505d07812c[JS_NEMUCOD.XXZA] [JS_NEMUCOD.XXZA] [BehavesLike.JS.ExploitBlacole.lv] [Troj/JSDown-BG] [JS/Nemucod.DTTU!tr] [JS/TrojanDownloader.Nemucod.CJ] [Trojan-Downloader.JS.Nemucod]
f01352545d711a09b6556e33be6f8c8c[JS/TrojanDownloader.Nemucod.CJ] [BehavesLike.JS.ExploitBlacole.lv] [Troj/JSDown-BG] [JS/Nemucod.DTTU!tr]
ad01ed03181845d602b804a239b04e05[JS/TrojanDownloader.Nemucod.CJ] [BehavesLike.JS.ExploitBlacole.lv] [JS/Nemucod.DTTU!tr]
bf64266980cfa9d48290528ffb72de34[JS/TrojanDownloader.Nemucod.CJ] [BehavesLike.JS.ExploitBlacole.lv] [JS/Nemucod.DTTU!tr]
01f6a4a93efaf08f8f974fc7a07601d1[HW32.Packed.D748] [Win32/Heim]
e55584d8af40bd180edba1f207a1bdd7[BehavesLike.JS.ExploitBlacole.zv]
5bf6dc77c123ac7d8f5a388a77d236b6

Whois
PropertyValue
Email info@veonet.eu
NameServer dns2.veonet.de
Changed 2013-09-18 08:59:11