» www.gogobox.com.tw
Overview
Analysis
IPs Addresses (1)
Downloads (3)
Network (1)

www.gogobox.com.tw

Domain Information

Server location:

T'Ai-Wan, Taiwan (TW)

ASN:

AS3462 HINET Data Communication Business Group

Root domain:

gogobox.com.tw

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

McAfee

Artemis!AAFF560A39D0, Artemis!3C9101DE0ADA, Artemis!55FE9DDF3411

100.00%

K7 AntiVirus

Trojan

100.00%

NANO AntiVirus

Trojan.Win32.Daromec.cdtwv

100.00%

Kaspersky

not-a-virus:RemoteAdmin.Win32.RAT

100.00%

Agnitum Outpost

Riskware.RemoteAdmin

100.00%

Dr.Web

BackDoor.Comet.21

100.00%

VIPRE Antivirus

Trojan.Win32.Generic

100.00%

Sophos

Generic PUA NP

100.00%

ESET NOD32

Win32/MiniUPnP (variant), Win32/MiniUPnP.A potentially unsafe (variant)

100.00%

Fortinet FortiGate

Riskware/RAT

100.00%

Malwarebytes

Trojan.RemoteAdmin

66.67%

Trend Micro House Call

TROJ_GEN.F47V0324, Suspicious_GEN.F47V0421

66.67%

Bkav FE

W32.Clodda9.Trojan

33.33%

Quick Heal

RemoteAdmin.RA.g5 (Not a Virus)

33.33%

The domain www.gogobox.com.tw has been seen to resolve to the following IP address.

211.20.187.100

www.gogobox.com.tw

May 10, 2014

File downloads found at URLs served by www.gogobox.com.tw.

11 / 68 (PUP)

http://www.gogobox.com.tw/.../GOGOBoxSetup.exe (55fe9ddf3411e1d7074c64a7b8905f5f)

13 / 68 (PUP)

http://www.gogobox.com.tw/.../GOGOBoxSetup.exe (3c9101de0ada0688dd0bde280c6699cd)

12 / 68 (PUP)

http://www.gogobox.com.tw/.../GOGOBoxSetup.exe (aaff560a39d09f002cbf21ef3cd0b128)

The following file have been seen to comunicate with www.gogobox.com.tw in live environments.

TCP » 211.20.187.100:80

gogobox.exe (gogobox by NEXTLiNK Technology Co.)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.