home

www.parademinas.mg.gov.br

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
gov.br

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

MicroWorld eScan
Gen:Variant.Symmi.45916, Trojan.GenericKD.2384618
100.00%

McAfee
RDN/PWS-Banker!dx, RDN/Generic Downloader.x!nk
100.00%

K7 AntiVirus
Trojan-Downloader
100.00%

NANO AntiVirus
Trojan.Win32.Urelas.bdmnfz, Trojan.Win32.Delf.drpbff
100.00%

avast!
Win32:Malware-gen, Win32:Dropper-gen [Drp]
100.00%

Kaspersky
Trojan-Banker.Win32.Banbra, Trojan-Ransom.Win32.Blocker
100.00%

Bitdefender
Gen:Variant.Symmi.45916, Trojan.GenericKD.2384618
100.00%

Agnitum Outpost
Trojan.PWS.Banbra, Trojan.DL.Delf
100.00%

Lavasoft Ad-Aware
Gen:Variant.Symmi.45916, Trojan.GenericKD.2384618
100.00%

Sophos
Mal/Generic-S, Troj/DwnLdr-MMP
100.00%

F-Secure
Gen:Variant.Symmi.45916, Trojan.GenericKD.2384618
100.00%

VIPRE Antivirus
Trojan.Win32.Generic
100.00%

Trend Micro
TROJ_BANLOAD.YWNIB, TROJ_GEN.R0C1C0EEF15
100.00%

Emsisoft Anti-Malware
Gen:Variant.Symmi.45916, Trojan.GenericKD.2384618
100.00%

G Data
Gen:Variant.Symmi.45916, Trojan.GenericKD.2384618
100.00%

The domain www.parademinas.mg.gov.br has been seen to resolve to the following IP address.

52.33.241.254
ec2-52-33-241-254.us-west-2.compute.amazonaws.com
February 21, 2016

File downloads found at URLs served by www.parademinas.mg.gov.br.

31 / 68    (Malware)
http://www.parademinas.mg.gov.br/.../flashplayer15.exe  (9a5550cfe49359cd290134cd27077659)

24 / 68    (PUP)
http://www.parademinas.mg.gov.br/.../flashplayer16.exe  (0a7302b7bbff48e02fdf04b5c1ae9926)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.