Domain > ladiesdehaan.be

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://www.malware-traffic-analysis.net/2016/02/11...

https://otx.alienvault.com/pulse/56bd111a4637f25d9...

https://otx.alienvault.com/pulse/56be641e67db8c71b...

https://www.virustotal.com/en/file/c132ca179787171...

Files that talk to ladiesdehaan.be

MD5	A/V
715941eb01e90ea504dde914893b5eec	[Troj.W32.Jorik.Slenfbot] [Trojan.Cryptlock.N!g2] [BackDoor-FDCH!715941EB01E9]
bf1f5c4754376f3fd31a253eda1b28ad	[BackDoor-FDCH!BF1F5C475437] [Trojan.Cryptlock.N!g2]
1335ed42c42561521dfed1988a11bd56
db4133a33ffa8da00b9f72d3973006e5	[BackDoor-FDCH!DB4133A33FFA] [Ransom.FileLocker] [Trojan.Cryptlock.N!g2] [Trojan.Inject1.56622] [Trojan.Mikey.D7AEA]
a16bd9447fd1f1cd919f8c3d6b5ff057
5b929b5e993676a4b203fb3cad6ad75e
4878f3683d6bc605bb21d0ebd1164fbc	[Packed-GM!4878F3683D6B] [Uds.Dangerousobject.Multi!c] [Suspicious.Cloud.5] [BehavesLike.Win32.PWSZbot.gc] [TR/Crypt.ZPACK.212015] [Win32/Filecoder.TeslaCrypt.I]
c6e427cc4231040e9f9be4da5a0d6efa	[Ransom.TeslaCrypt] [Troj.Ransom.W32.Bitman!c] [Trojan-Ransom.Win32.Bitman.iij] [Ransom:Win32/Tescrypt.E] [Win32/Filecoder.TeslaCrypt.I] [Win32.Trojan.Bp-dropperv.Bzmy]
5282e29916e65eb3659051af5ca05db2	[BehavesLike.Win32.PWSZbot.hc] [Trojan/Win32.Teslacrypt]
6b55a4d9c9d4807fb62ddd853b55f51e
1ff43e01c2372e9df6b772af16e5c5b5
62c7c255422f15d7cc0ca70389e032ea	[Ransom.FileLocker] [Trojan.AVKill.59851] [BehavesLike.Win32.PWSZbot.hc] [TR/AD.TeslaCrypt.Y.202] [W32/Injector.CRRF!tr] [Ransom:Win32/Tescrypt.H] [Trojan/Win32.Teslacrypt] [Trj/RansomCrypt.F] [Win32/Filecoder.TeslaCrypt.I]
b32156f95daafda921f3a1487070136c	[Ransom.TeslaCrypt] [Win32.Trojan.Bp-dropperv.Bzmy] [Trojan.Encoder.3829] [BehavesLike.Win32.PWSZbot.hc] [TR/Crypt.Xpack.446485] [W32/Filecoder.I!tr] [Ransom:Win32/Tescrypt.H] [Win32/Filecoder.TeslaCrypt.I]
49c113cfba4c8666c22cbd7fff8a09bd	[BehavesLike.Win32.AdwareCross.gh]
bc8f2871dff389b12983005b2c3e19d1	[Ransom.FileLocker] [Win32.Trojan.Bp-dropperv.Bzmy] [BehavesLike.Win32.PWSZbot.hc] [TR/Crypt.Xpack.323692] [Trojan/Win32.Teslacrypt]
b504ce87e4a529a9c5e05e3aaeeb3d81	[Ransom.FileLocker] [Trojan.Win32.TeslaCrypt.552960[h]] [Uds.Dangerousobject.Multi!c] [BehavesLike.Win32.PWSZbot.hc] [TR/Crypt.Xpack.393447] [Trojan/Win32.Teslacrypt] [Win32/Filecoder.TeslaCrypt.I] [W32/Injector.CSAE!tr] [Win32/Trojan.6a9]
35a6de1e8dbea19bc44cf49ae0cae59e	[Ransom.Crowti.WR7] [Trojan.MalPack.PK] [Suspicious.Cloud.2] [Ransom_CRYPTESLA.YUYAHP] [Trojan-Ransom.Win32.Bitman.ikw] [Trojan.Win32.S.TeslaCrypt.441344[h]] [Win32.Trojan.Crypt.Lknu] [Trojan.Encoder.3817] [Win32.Malware!Drop] [Ransom_CRYPTESLA.YUYAHP] [BehavesLike.Win32.AdwareCross.gh] [Mal/Wonton-BZ] [TR/Crypt.Xpack.446090] [Trojan[PSW]/Win32.Tepfer] [Ransom:Win32/Tescrypt.A] [Trojan.Win32.Crypt] [W32/Kryptik.ENJD!tr] [Crypt5.AHOM]
8f9b2e9a2a221059c78da24592317ae3
1831e9a635162ce5f44a9f78e151b14a	[BehavesLike.Win32.PWSZbot.fh] [Win32.Trojan.Bp-dropperv.Bzmy]
cdae21c4f1f02ec9a765ff8df54b653a

Whois

Property	Value
NameServer	ns1.webcreating-dns27.be
Created	2013-04-22 00:00:00
Registrar	Webcreating IT Servi