Domain > les-eglantiers.fr

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://isc.sans.edu/forums/diary/Malicious spam w...

https://otx.alienvault.com/pulse/55f9d1d167db8c6fb...

Files that talk to les-eglantiers.fr

MD5	A/V
6a5aca386813068d8b2e310207cc21f1	[JS.Downloader.Q] [JS/TrojanDownloader.Nemucod.AJ] [NORMAL:Trojan.DL.Script.JS.Nemucod.b!1616509] [Troj/Dloadr-DXL] [SCRIPT.Virus] [BehavesLike.JS.Exploit.xv] [JS/Nemucod.AJ!tr.dldr]
96a61e057c2ba6a130692362204f2091	[JS.Downloader.Q] [JS/TrojanDownloader.Nemucod.AJ] [Troj/JSDldr-AF] [SCRIPT.Virus] [BehavesLike.JS.Exploit.xv] [NORMAL:Trojan.DL.Script.JS.Nemucod.b!1616509] [JS/Nemucod.AJ!tr.dldr]
5e4669b796d0ced3d47e1cfa70a3ad65	[JS.Downloader.Q] [JS/TrojanDownloader.Nemucod.AJ] [Troj/JSDldr-AF] [SCRIPT.Virus] [BehavesLike.JS.Exploit.xv]
df19895d039ae361fe38b9ae36637f1b	[JS.Downloader.Q] [SCRIPT.Virus] [Troj/JSDldr-AF] [JS/TrojanDownloader.Nemucod.AJ] [JS/Nemucod.AJ!tr.dldr]
85cfc0d1946285a482c684a0b888055c	[JS.Downloader.Q] [Troj/JSDldr-AF] [SCRIPT.Virus] [JS/Nemucod.AJ!tr.dldr]
a45a0e5e0c3476f20e6db443533d2b36
35f44cfe13f5c3daa145e64e8749651b	[JS/DwnLdr-MON] [SCRIPT.Virus] [BehavesLike.JS.Exploit.xv]
3f6160f6574ca9d0e1606cfd18ee50b8	[JS:Trojan.JS.Downloader.AN] [JS:Trojan.JS.Downloader.AN] [JS.Downloader.Z] [JS:Trojan.JS.Downloader.AN] [JS:Trojan.JS.Downloader.AN] [JS/TrojanDownloader.Nemucod.AS] [NORMAL:Trojan.DL.Script.JS.Nemucod.b!1616509] [JS:Trojan.JS.Downloader.AN] [JS/DwnLdr-MON] [JS:Trojan.JS.Downloader.AN] [SCRIPT.Virus] [Downloader.Nemucod.JS.2] [JS/Nemucod.c] [TrojanDownloader:JS/Nemucod.P] [JS:Trojan.JS.Downloader.AN] [JS:Trojan.JS.Downloader.AN] [JS/Nemucod.c]
6bb36c374eac7e6fa87457f575192a08	[JS.Downloader.Z] [NORMAL:Trojan.DL.Script.JS.Nemucod.b!1616509[F1]] [JS/DwnLdr-MON] [SCRIPT.Virus] [JS/Nemucod.c] [TrojanDownloader:JS/Nemucod.P] [JS/Nemucod.c]
4c54a92ef58c8883693551b1a4197b63
efe2a996eb14b9ae4b6b24d0627ceb0c	[Troj/JSDldr-AF] [SCRIPT.Virus] [BehavesLike.JS.Exploit.lv] [JS/Nemucod.AV!tr]
56decc8b0d6cfd63a2798f066fa4f3ba	[Troj/JSDldr-AF] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv]
23de9e6aad67d8a516acd6e60d90f4e9	[JS.Downloader.AD] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [JS/DwnLdr-MON] [TrojanDownloader:JS/Nemucod.P] [JS/Nemucod.AV!tr]
12ddb55c408abd55834361bb9e3530a4
1b483260349354d44ac6e8be926c6c45	[JS:Trojan.JS.Downloader.AP] [JS.Downloader.AD] [JS:Trojan.JS.Downloader.AP] [JS/TrojanDownloader.Nemucod.BA] [JS:Trojan.JS.Downloader.AP] [JS/DwnLdr-MON] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS/Nemucod.AV!tr]
8704ceae718a1266e922e709c4fbfff8	[JS:Trojan.JS.Downloader.AP] [JS.Downloader.AD] [JS:Trojan.JS.Downloader.AP] [JS/TrojanDownloader.Nemucod.BA] [JS:Trojan.JS.Downloader.AP] [JS/DwnLdr-MON] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [TrojanDownloader:JS/Nemucod.P] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS/Nemucod.AV!tr]
d16d1b73271cefc08f0ae60d6516ab14	[JS:Trojan.JS.Downloader.AP] [JS.Downloader.AD] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS/DwnLdr-MON] [SCRIPT.Virus] [JS:Trojan.JS.Downloader.AP] [TrojanDownloader:JS/Nemucod.P] [JS/Nemucod.AV!tr]
156c2ec20b3cf3158690770462a65b7d	[JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS.Downloader.AD] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS/TrojanDownloader.Nemucod.BA] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [JS:Trojan.JS.Downloader.AP] [SCRIPT.Virus] [BehavesLike.JS.ExploitBlacole.lv] [JS:Trojan.JS.Downloader.AP] [JS/Nemucod.AV!tr]

Whois

Property	Value
Email	huisman.huisman@orange.fr
NameServer	ns2.hostpapa.com
Created	2011-12-09 00:00:00
Changed	2015-08-10 00:00:00
Registrar	EPAG Domainservices