Download
Community
knowledgeBase
» a.art-history.work
Overview
Analysis
IPs Addresses (5)
Downloads (7)
Network (2)
a.art-history.work
Domain Information
Server location:
Oregon, United States (US)
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Root domain:
art-history.work
Analysis
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Threat.Win.Reputation.IMP
100.00%
IPs Addresses
The domain a.art-history.work has been seen to resolve to the following 5 IP addresses.
52.27.128.56
ec2-52-27-128-56.us-west-2.compute.amazonaws.com
July 7, 2015
52.27.128.62
ec2-52-27-128-62.us-west-2.compute.amazonaws.com
July 7, 2015
52.27.128.59
ec2-52-27-128-59.us-west-2.compute.amazonaws.com
July 7, 2015
52.11.167.137
ec2-52-11-167-137.us-west-2.compute.amazonaws.com
July 1, 2015
52.27.23.115
ec2-52-27-23-115.us-west-2.compute.amazonaws.com
July 1, 2015
Downloads
File downloads found at URLs served by a.art-history.work.
1 / 68 (Malware)
http://a.art-history.work/hp/?q=XC8R3kCRinX9bcdefAZ9WjhZpbjycRRc0QvPnVQZUsVPGpJCFhYAy P2LKAkUsqXRjlWZx112RtRO6RKn7crVw/LaIIvmY9uP1h31o6FaOI3UHCNIl9kVmJgif9Pyo RHC7cujZ3w8v 9cMC5bk2hn/hgeyx2ocw pgxFiAXchVZ8KlU/6slnta0omEndhTd4sgnwVZcJQN4w5p 0OfcnQ/.../ I
(thunderdome xii mp3.exe)
1 / 68 (Malware)
http://a.art-history.work/hp/?q=ylNsrqqo4Q6Otvqomj3M6GfzqYBmPjS55jYuocUM9sNelKjt4xOq7PqRpH62L5jFwRHKtE5/GYWloYsM9qFs8F6AE85LD3vpNg48JCt7a0s27ApOqH6rnvAb4L/b0Y93Jpqil9/uMedgYWhOW16BKA21z4TnqwXyJpmc5IR/.../6NA1j
(nfs2.exe)
1 / 68 (Malware)
http://a.art-history.work/hp/?q=lmy0JrumPTQw9BCDWYRL5fuVzrQ1n9Xybf9N2Q8tS14oTgWlz5wNLxCnDxoK2/8asc1WiEf/.../MNlemhmYtKBBgpOowiU bSSoykaqFzTELhm4T
(download.exe)
1 / 68 (Malware)
http://a.art-history.work/hp/?q=9ip4w/.../6SpcIr9V30x5Dd30N2XF11SSfiDm TDlKsuCc WKP6eziHilmgkCq0Q2lQDMGlpvnd7kWMs1VJbo5l4qSIzjc
(3541 pokemon platinum u nds.exe)
1 / 68 (Malware)
http://a.art-history.work/hp/?q=Xcg8/qq33PdGWYSUMOHpU/M9NDVHmDFPHuqs2QoPwQhYT1n8dY6Nz0M9floKztU37ccUtpGQg/JXgHIA8ZYhegiEbli6lKHpDEk/YhZQA6QRBqUTIcvfftqW7/wiqjun6VgS4Y7qqlGCo5J4fQBYaNfkSnEaDcv/RefUlLxgc aLR2hOUdj9LIh6JOKHKS91jsY7FIxqcduTDWPyNlk0nxOVjp9RswVIwgx1R1YzuM3dQRwmr2muvp2FyXTL3KQR/56qW/.../a
(download.exe)
1 / 68 (Malware)
http://a.art-history.work/hp/?q=qhcYUBOGPo/efrpnikdsSz4u0Y1CSflWmPPQAoxSGNWpE2oBe7YkX4pLA0Pef0kLymepz8UvBtbf2BiobaqEHVkS40AfQo6pN1UtJ9ELIFAM3/SLiD0AgPDNhYHopy62Ubjfxvc654mNpdYzzS576YwK567cbuJ5t1rMWUb0P/oNev/qSDelwN6jWds6lsg9HVi9Vy/L7u55qpwGeOT9gu48wj5VE4Imf H9G5073nf8NTaUaOUTC2x4K8PZyMTW26O1ZJ3kRjg0DX3plCaZaAY2HVFtacBwX4i9eaotEJdnEojI4XTu6FAYxOAPVBlObiEU/CQlLgGO MzYNJRcaX8y3nZzjvZspXicvZ4g585OK/IvpqByxnXHLZ zlKeh3AJwYhOSfp/.../izAWN2LrAPu45gCJyEEvvlC1UceQWkJBZpUbJMW0xf9sUtNln2xhC24wXDzMcJAGsWjg zVj27OQv28JCyeL ccK2kccvi4tNpdkRBfX8d48W3ulPcRnzYRK5eufmuHbhBvoNS1dXbdeQ8XIfhU2hp
(san andreas quake 2015 1080p bluray x264-guacamole full download.exe)
1 / 68 (Malware)
http://a.art-history.work/hp/?q=9bJpiAWQOwPuzabcde/m1dl9J5agzOFPkJLMQ oOeyFgLbzYFHH7zhRVXu5At06FxPWVDitNjAUL0lJadLvwpEfRCIajJaxOK604g3Zqthppimg8 mixAG4PU55GmxSnQMrDqPHtnsblfKs7KSiJLqTatLLTYuaspJCWDLkM60gZxKNGYBTzFUqwSO6T3XEThIqT0wAN9r2mmTZAoPtpPXSbH0gkKE5wmS0oHIrkEfFPsO t1wLyrMmZszBgmOSAOuQPSVqPuwHz59iw6Uqwnu9RN/.../LI1KQ09OCIwMZlQWs
(download.exe)
Network Communications
The following 2 files have been seen to comunicate with a.art-history.work in live environments.
TCP »
52.11.167.137
:80
download.exe
TCP »
52.27.128.56
:80
updating.exe
TCP »
52.27.128.59
:80
download.exe
TCP »
52.27.128.62
:80
updating.exe
X