» www.ofenrohr-thermometer.de
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (4)
Related Domains (7)

www.ofenrohr-thermometer.de

Domain Information

Server location:

Berlin, Germany (DE)

ASN:

AS6724 STRATO STRATO AG,DE

Root domain:

ofenrohr-thermometer.de

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

Malwarebytes

Trojan.Dridex

100.00%

Bitdefender

Trojan.Ransom.AMF

100.00%

Trend Micro House Call

BKDR_DRIDEX.AM

100.00%

Kaspersky

UDS:DangerousObject.Multi.Generic

100.00%

Dr.Web

Trojan.Dridex.279

100.00%

Trend Micro

BKDR_DRIDEX.AM

100.00%

ESET NOD32

Win32/Dridex.AA

100.00%

AVG

Luhe.Fiha.A

100.00%

Qihoo 360 Security

HEUR/QVM10.1.Malware.Gen

100.00%

The domain www.ofenrohr-thermometer.de has been seen to resolve to the following IP address.

81.169.145.95

w8f.rzone.de

April 19, 2016

File downloads found at URLs served by www.ofenrohr-thermometer.de.

9 / 68 (Malware)

http://www.ofenrohr-thermometer.de/.../h54f3.exe (ef658bc7c2a8f5181e30365b7a4ec87a)

The following 4 files have been seen to comunicate with www.ofenrohr-thermometer.de in live environments.

TCP » 81.169.145.95:80

browser.exe (speed browser by Smart Applications)

TCP » 81.169.145.95:80

42fe.tmp.exe

TCP » 81.169.145.95:80

online-guardian-v2.0.9.exe

TCP » 81.169.145.95:21

Related Domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.