Help RSS API Feed Maltego Contact                        

Domain > stun.2talk.co.nz

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?

Reports
https://otx.alienvault.com/pulse/55d2323d4637f2170...    
https://pastebin.com/YTN2E70f    

Files that talk to stun.2talk.co.nz
MD5A/V
ae61532ac8bf4eec303f4a3649981626[Troj.Spy.W32.Zbot] [Upatre.FH]
fd0f57fd1f93c13b7bd63f811ac7939e[Downloader-FSH!FD0F57FD1F93] [Upatre.FH] [BehavesLike.Win32.PWSZbot.mm] [Trojan.FakePDF.DL] [Downloader.Upatre] [TROJ_UPATRE.YYQY] [Trojan.Win32.Staser.arjy] [Trojan.Upatre.117] [Troj/DwnLdr-MAY] [TrojanDownloader:Win32/Upatre.AN] [Trj/CI.A] [Win32/TrojanDownloader.Waski.A] [Trojan-Downloader.Win32.Waski] [Trojan/W32.Staser.23040.C] [Win32/Upatre.eNIAbP] [Trojan/Win32.Staser] [Trojan/Win32.Upatre] [Win32.Trojan.Staser.Eddv] [Trojan.Win32.Staser] [W32/Waski.A!tr.dldr] [Trojan.Win32.Waski.bA]
be3558544dc962738b792e6d8d3ea82d
261d6733d933cfe890ed9000a057345c[W32.SymmiRweaszsJ.Trojan] [Backdoor/W32.Dyreza.401408] [TrojanRansom.Crowti.B4] [Spyware.Ursnif] [Backdoor.Dyreza!] [W32/Backdoor2.HVMC] [Battdil.I] [Win32/Tnega.ffYcSeB] [TROJ_SPNR.32IO14] [Backdoor.Win32.Dyreza.j] [Trojan.Win32.Dyre.dfgidw] [Trojan.Dyre.27] [Backdoor.Dyreza.Win32.4] [BehavesLike.Win32.Downloader.fh] [W32/Backdoor.TXRI-8844] [TR/Battdil.F] [Trojan[Ransom]/Win32.Blocker] [Trojan:Win32/Anaki.A] [Backdoor.Dyreza] [Win32/Battdil.F] [Win32.Backdoor.Dyreza.Hoor] [Backdoor.Win32.Dyreza] [W32/Battdil.F!tr] [SHeur4.CBWI] [Backdoor.Win32.Dyreza.AJmS]
10d4c949dc71009e5e5dad8ae3420a9f[Upatre-FAAH!432718827A11] [W32/Trojan.YJIY-5058] [Upatre.FH] [TR/ATRAPS.A.2040] [Trojan-Downloader.Waski] [W32/Upatre.FH!tr] [Downloader-FSH!432718827A11] [Trojan.Upatre] [W32/Trojan3.MCL] [Downloader.Upatre] [Win32/Upatre.YBeUWIB] [Trojan-Downloader.Win32.Upatre.dxq] [TrojWare.Win32.Waski.~A] [Trojan-Downloader:W32/Upatre.I] [Trojan.DownLoader11.41444] [Win32.Malware!Drop] [TROJ_UPATRE.SOG] [Troj/Invo-Zip] [TrojanDownloader:Win32/Upatre] [Trj/Chgt.L] [Win32/TrojanDownloader.Waski.A] [Win32.Trojan-downloader.Upatre.Dxwu] [Trojan.Win32.Waski.bA] [Luhe.Fiha.A]
27752aabf5a439ff7d5770db79d3c840
1dd13356fdec6fb2f2ea04723216d3cd[HB_Arkam] [Artemis!AA180F913508]
7b537afd39a14e9311ee3ab5f7483734[Suspect-BW!7B537AFD39A1] [Trojan.Email.FakeDoc] [Downloader.Upatre] [TROJ_DLODR.POLH] [Trojan-Downloader.Win32.Upatre.crt] [TR/ATRAPS.A.1984] [Win32/TrojanDownloader.Waski.A] [Luhe.Fiha.A]
29d5b6216d01c9993a7dcba7a42e01da[Upatre-FACH!29D5B6216D01] [Trojan.Downloader.Upatre] [Downloader.Upatre] [Win32.Trojan.Fakedoc.Auto] [Mal/Upatre-V] [Trojan.Upatre.5187] [TROJ_UPATRE.SMX6] [Artemis] [W32/Trojan.CDVP-7235] [TR/Dropper.A.8989] [Trj/Chgt.O] [Win32/TrojanDownloader.Waski.A] [Evilware.Outbreak] [W32/Upatre.V!tr] [Adware.Win32.iBryte.DPCE]
66dbfbd703ecdeb2bcf530b45507eabd
bcb25ed9a37a6f5abc63f00fea066002[Win32.Trojan.Inject.Auto]
6c7d3467bc30980edbd57d9442c3041e
c489bedf89c8576f27aa11b0c005da6a
db4ecfbb644f5ed9ab0608ffb05cc724[HW32.Packed.CCD0] [Win32.TrojanDropper.Dowque.A.4] [Artemis!DB4ECFBB644F] [Trojan.Battdil.Win32.282] [WS.Reputation.1] [Win32/Battdil.AH] [Trojan.Win32.DownLoader14.duezgw] [Trojan.DownLoader14.63175] [BehavesLike.Win32.PWSZbot.hh] [TR/Battdil.518656] [W32/Battdil.AH!tr] [Trojan/Win32.Dyre] [VirTool:Win32/Obfuscator.ANT] [Trojan.Win32.Battdil.AH] [Trojan.Win32.Battdil]
29c18600dec3e79d4a0f3d51eb1579a2[TrjnDwnlder.Upatre.MUE.BC3] [W32/S-3eb63b32!Eldorado] [W32/S-3eb63b32!Eldorado] [Win32.Trojan.Inject.Auto]
3a96e05f72edd19de9b65e4b15a64be0
a16fb5b5d4d59b8c40237db878949353
e7e2ae33bd382db1b83389ba8de83066
15d9d5e1fad3ed267521ca4be723c288[HW32.Packed.896A] [TrjnDwnlder.Upatre.MUE.BC3] [Trojan.MalPack] [Infostealer.Dyre] [TSPY_DYRE.CK] [Win32.Trojan.Inject.Auto] [TrojWare.Win32.TrojanDownloader.Waski.NC] [Trojan.DownLoader16.31238] [Trojan.Kryptik.Win32.788078] [TSPY_DYRE.CK] [Upatre-FACE!15D9D5E1FAD3] [Troj/Upatre-LD] [W32/Trojan.CNIL-4901] [TrojanDownloader:Win32/Upatre!rfn] [Trojan/Win32.Upatre] [Upatre-FACE!15D9D5E1FAD3] [Heur.Trojan.Hlux] [Adware.Win32.iBryte.DVTY] [Trojan.Win32.Crypt] [W32/Kryptik.DVPU!tr] [Crypt4.CENA]
a141900fe9ed6d163f69c10ddeb96ddf

DNS Resolutions
DateIP Address
2014-07-17202.180.76.161 (ClassC)
2014-11-0527.111.14.93 (ClassC)
2024-12-2627.111.14.93 (ClassC)

Subdomains
DateDomainIP
stun.2talk.co.nz2014-07-17202.180.76.161
tls.2talk.co.nz2024-11-2527.111.14.65
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information