Help RSS API Feed Maltego Contact                        

Domain > magalyamaya.mooo.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://www.symantec.com/connect/blogs/colombians-m...    
https://otx.alienvault.com/pulse/56606c974637f2388...    

Files that talk to magalyamaya.mooo.com
MD5A/V
f541b2a0abecfc970fb4aacb296504ab[Backdoor.Androm.Win32.18263] [Backdoor.Androm!FiV3MHCi5+I] [W32/Trojan.EJZE-5335] [Trojan.Zefarch] [Backdoor.Win32.Androm.gpeh] [Trojan.Win32.Androm.dqieov] [UnclassifiedMalware] [Backdoor/Androm.lgo] [TR/XtremeRAT.A.446] [Trojan[Backdoor]/Win32.Androm] [Trojan:Win32/Xtrat] [Backdoor/Win32.Xtrat] [Virus.Win32.Heur.p] [Backdoor.Androm] [Trojan.Win32.Injector] [W32/Androm.GPEH!tr.bdr] [Inject2.BXLO]
7eaffccfb57c5580448102e0e468c7be[Virus.Win32.OtwycalP.1!O] [Backdoor.Androm.Win32.18159] [Backdoor.Win32.Androm.gria] [Virus.Win32.Heur.p] [Trojan.Virtumod.14123] [TR/XtremeRAT.A.483] [Backdoor/Win32.Xtrat] [Inject2.BZFW]
252c849643533a84f5b1fa03b97cc79a[Trojan.Win32.Xtrat.dntmbj] [W32.Extrat] [Trojan.Win32.Xtrat.mto] [Trojan.Xtrat!KnU3EmDt++A] [Virus.Win32.Heur.p] [Trojan.KillFiles.24456] [BehavesLike.Win32.Fujacks.fh] [W32/Trojan.QRUZ-1682] [TR/Injector.357548] [Trojan/Win32.Xtrat] [Trojan:Win32/Xtrat] [Artemis!252C84964353] [Trojan.Win32.Injector] [W32/BTLR!tr] [Inject2.BOQH]
9b5a44bf87d646f50172fabafc463b95[Virus.Win32.Heur.p] [Win32/Remtasu.Y]
c145c246ce1c388200bc2600c8bbcd2c[W32.DropperZbotS.Trojan] [TrojanPWS.AutoIt.Zbot.S] [Backdoor/Poison.evja] [WS.Reputation.1] [Win32/Remtasu.Y] [Trojan.Win32.Xtrat.wfj] [Trojan.Win32.Xtrat.duqggl] [BehavesLike.Win32.Dropper.jh] [TR/AD.XtremeRAT.Y.15] [Trj/CI.A] [Autoit] [Trojan.Win32.Xtrat.wfj]
f47d4201bdc739f0196ac5445e8d5969
2e58a24902bd95033808e4737ed90301
ea946be5c6ded75075e973c00389a98e[Virus.Win32.Heur.p]

Whois
PropertyValue
NameJoshua Anderson
Organization Joshua Anderson
Email hostmaster@afraid.org
Address 4120 Douglas Blvd #306-199
Zip Code 95746
City Granite Bay
State CA
Country US
Phone +1.9167057835
NameServer NS3.AFRAID.ORG
Created 2000-03-24 07:27:37
Changed 2014-03-08 15:40:03
Expires 2015-03-24 00:00:00
Registrar Domain.com, LLC