Domain > maps.pilenga.mobi

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://blog.dynamoo.com/2016/06/malware-spam-david...

Files that talk to maps.pilenga.mobi

MD5	A/V
aa8d8890ecfd7f90dc0fbbf790ebc5e4	[Trojan.Yakes.r4] [Trojan.Win32.Yakes.dxtszn] [TSPY_GINA.RJI] [Trojan.Win32.Yakes.mriq] [Trojan.Win32.A.Yakes.272896.M[h]] [PE:Malware.RDM.40!5.2E[F1]] [TSPY_GINA.RJI] [Packed-FQ!AA8D8890ECFD] [Mal/Wonton-BB] [TR/AD.Gamarue.Y.1057] [Trojan/Win32.Yakes] [Worm:Win32/Gamarue] [Packed-FQ!AA8D8890ECFD] [Adware.Win32.iBryte.DZVL] [Win32.Trojan.Inject.Auto] [W32/Yakes.DZVL!tr] [Crypt_r.AAR] [Trj/CI.A]
56a5ad1bf0ade0fb30a479f6c7dd8ad8	[Backdoor.Bot] [Backdoor.Win32.Androm.ilyj] [BackDoor.Bebloh.96] [W32/Trojan.WWAR-1407] [Trojan.Mikey.D674B] [Trojan/Win32.Upbot] [Worm:Win32/Gamarue.AU] [PE:Malware.RDM.29!5.23[F1]] [Crypt5.ETO] [Trj/CI.A]
e86347d2063ef160842e7dd30b9c1d71	[Backdoor.Win32.Androm.imga] [PE:Malware.Obscure/Heur!1.A121[F1]] [Trojan.Inject1.56622] [Troj/Gozi-N] [TR/AD.Gamarue.Y.1250] [W32/Injector.CKQU!tr] [Worm:Win32/Gamarue] [Win32.Trojan.Inject.Auto] [Trojan.Win32.Crypt] [Adware.Win32.iBryte.EBEN]
b34f5310fb6c1d9d9fed539e70c4c552	[Win32.Trojan.Inject.Auto]
e0d611e554f9e7dcf0ee7d6cfe76624b	[Artemis] [Drixed-FBW!E0D611E554F9] [Win32.Trojan.Inject.Auto]
0b0422d384c9acb4c563347d2bd79ec3	[Trojan.Downloader] [Trojan.Midie.D13F6] [Trojan.Win32.Encoder.dzhkkh] [Suspicious.Cloud.9] [Trojan.Win32.Yakes.ntia] [Trojan.Yakes!JYLbIA7Wf7Y] [Win32.Trojan.Yakes.Eem] [Trojan.Encoder.3333] [TR/Crypt.ZPACK.225540] [Trojan[Backdoor]/Win32.Androm] [Worm:Win32/Gamarue] [Trojan.Win32.Z.Yakes.184832.B[h]] [Trj/CI.A] [Trojan.Win32.Crypt] [W32/Kryptik.EIMA!tr] [Adware.Win32.iBryte.EIMA]
0bf680abd79154367ee8b389fc8af118
c1597e3fd7b5cd1052cdc69f587afe17
f95d5e4857c7a34ad4989f21ba9e5ffa
f03be2bb9c1d0269e52f2ec05785a6ac	[Backdoor.Bot] [BKDR_ANDROM.CP] [Win32.Outbreak]
7402e978640e204f793b98891978654c
cc26c56657bf66f01dd7b93a35e07f14	[Trojan.Heur.TP.E0D5A9] [Suspicious.MH690.A] [BehavesLike.Win32.Downloader.mh]
ea559dd8bdaf5b3feefc594d1e899768
0c9277831034bcaff03b73ecffcffd59	[Artemis!0C9277831034] [Ransom.FileLocker] [W32/Trojan.IPNW-8920] [Trojan.Cryptodefense] [TROJ_KRYPTIK.FDE] [Trojan.Win32.Yakes.ouhp] [Uds.Dangerousobject.Multi!c] [Trojan.DownLoader19.10027] [TROJ_KRYPTIK.FDE] [BehavesLike.Win32.Daum.dh] [Troj/Androm-FZ] [W32/Trojan3.TLW] [TR/Crypt.Xpack.433570] [Trojan/Win32.Yakes] [Worm:Win32/Gamarue.AU] [Adware.Win32.iBryte.ELUS] [Win32.Outbreak] [W32/Kryptik.ELUS!tr] [Crypt_r.AUY]
c8365b0b42ec5ae6d9213000c9a55a11	[W32.W.Ngrbot] [BehavesLike.Win32.PWSZbot.dh]
754f6eae5336ccdfcf04f0d8a39a99ae	[Ransom.TeslaCrypt] [TSPY_FAREIT.HJK] [Trojan.Win32.Yakes.ownv] [Trojan.Encoder.3677] [TSPY_FAREIT.HJK] [TR/Crypt.Xpack.440621] [Trojan:Win32/Dynamer!ac] [Trojan.Inject]
cf17884c6f0fe0ff7d0bfab476de295f	[Win32.Trojan.Inject.Auto] [BehavesLike.Win32.AdwareRugo.dh]

Whois

Property	Value
Name	Fonderie Officine Pietro Pilenga SpA
Organization	Fonderie Officine Pietro Pilenga SpA
Email	[email protected]
Address	via Spirano, 4
Zip Code	24040
City	Comun Nuovo
State	BG
Country	IT
Phone	+39.0354544111
Fax	+39.0354544184
NameServer	ns2.register.it
Created	2010-05-07 08:20:34
Changed	2015-05-08 06:35:12
Expires	2016-05-07 08:20:34
Registrar	REGISTER.IT SPA (168