home

lalala2.jelastic.dogado.eu

Domain Information

Server location:
Nordrhein-Westfalen, Germany (DE)

ASN:
AS20773 HOSTEUROPE-AS Host Europe GmbH,DE

Root domain:
dogado.eu

Scanner detections:
Malware distribution  (75% detected)

Scan engine
Details
Detections

Kaspersky
Trojan.Win32.Yakes, HEUR:Trojan-Downloader.Script.Generic, UDS:DangerousObject.Multi.Generic
57.14%

ESET NOD32
Win32/TrojanDownloader.Delf.BLP trojan, MSIL/TrojanDownloader.Banload.EU trojan, Win32/TrojanDownloader.Banload.WOM trojan
42.86%

Avira AntiVirus
TR/Crypt.Xpack.281831, TR/Agent.180224.264, TR/AD.Injector.M.109
42.86%

Rising Antivirus
PE:Malware.RDM.05!5.B[F1], PE:Malware.RDM.39!5.2D[F1], PE:Malware.RDM.32!5.26[F1]
42.86%

IKARUS anti.virus
BehavesLike, Trojan-Downloader.MSIL.Banload, Trojan.Win32.Crypt
42.86%

Qihoo 360 Security
Win32/Trojan.Downloader.251, HEUR/QVM03.0.Malware.Gen, HEUR/QVM10.1.Malware.Gen
42.86%

Bkav FE
HW32.Packed
28.57%

Microsoft Security Essentials
Trojan:Win32/Dynamer!ac, Threat.Undefined
28.57%

Malwarebytes
Trojan.Banker.LRD, Spyware.Pony
28.57%

ESET NOD32
MSIL/TrojanDownloader.Banload.EU (variant), Win32/Kryptik.DYGF (variant)
28.57%

AhnLab V3 Security
Trojan/Win32.Zapchast
14.29%

Reason Heuristics
Threat.Downloader.KY
14.29%

MicroWorld eScan
Trojan.GenericKD.2764364
14.29%

nProtect
Trojan.GenericKD.2764364
14.29%

McAfee
RDN/Generic.dx
14.29%

The domain lalala2.jelastic.dogado.eu has been seen to resolve to the following 4 IP addresses.

185.80.93.249
January 27, 2016

185.80.93.250
January 27, 2016

46.163.100.240
ds46-163-100-240.dedicated.hosteurope.de
October 1, 2015

92.51.168.106
n92-51-168-106.cnet.hosteurope.de
October 1, 2015

File downloads found at URLs served by lalala2.jelastic.dogado.eu.

0 / 68
https://lalala2.jelastic.dogado.eu/Adobe Flash Player 18.13.exe  (cb7137dedbe34b82d4969034dc6e1fc3)

25 / 68    (Malware)
https://lalala2.jelastic.dogado.eu/Flash_Player_21.exe  (e49374304be75ba0b2e49de8c2619a73)

2 / 68      (Malware)
https://lalala2.jelastic.dogado.eu/Flash_Player_22.1.exe  (98ff783e426623694cbf1ad48415dd25)

5 / 68      (Malware)
https://lalala2.jelastic.dogado.eu/Flash_Player_26.1.5.exe  (725c4ad995031bf41abd0727e84bf07c)

3 / 68      (inconclusive)
https://lalala2.jelastic.dogado.eu/Flash_Player_25.4.1.exe  (adobe flash player 2015.exe)

2 / 68      (Malware)
https://lalala2.jelastic.dogado.eu/Flash Player 19.4.exe  (2e92b3636c3627a0b137c3628d1dc004)

5 / 68      (Malware)
https://lalala2.jelastic.dogado.eu/Adobe_Flash_Player_18.9.exe  (e0528270dd4e71465a1174cf6ace4272)

5 / 68      (Malware)
https://lalala2.jelastic.dogado.eu/Adobe Flash Player 18.13.exe  (17fe7fa21bb8398eca7c9fdd9976720b)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.