Domain > arabian-star.com

More information on this domain is in AlienVault OTX

Reports

https://twitter.com/ReaQta/status/7455040712980807...

https://www.reddit.com/r/Malware/comments/4p9uli/l...

Files that talk to arabian-star.com

MD5	A/V
cf572ef0f61f12b4ea6c92dab0ae8fe1	[Upatre.FH] [Trojan.Upatre] [Downloader.Upatre] [Trojan.Win32.Staser.asea] [Trojan-Downloader:W32/Upatre.I] [W32/Trojan.FQHH-6714] [Win32/TrojanDownloader.Waski.A] [Trojan-Spy.Zbot]
3790c507ffc10cd8025fac6993e3c2c4	[Trojan.Upatre] [Downloader.Upatre] [Upatre.FH] [Trojan.Win32.Staser.asea] [Trojan-Downloader:W32/Upatre.I] [W32/Trojan.FQHH-6714] [Trj/Crypter.C] [Win32/TrojanDownloader.Waski.A] [Artemis!3790C507FFC1] [Trojan.Email.FakeDoc] [W32/Trojan3.MSI] [BehavesLike.Win32.Autorun.mm] [Trojan-Spy.Zbot] [Downloader-FSH] [Win32/Upatre.DOVXEG] [TROJ_UPATRE.YJXC] [Trojan.DownLoader11.50174] [TR/Upatre.23040.1] [TrojanDownloader:Win32/Upatre.AF] [Trojan/Win32.Staser] [Trojan.Win32.Staser] [W32/DwnLdr.LZZ!tr] [Cryptic.EUD] [Trojan.Win32.Staser.aols]
284316c48e9aea15eb38a59b894d7226	[Spyware.Dyre] [Trojan.Win32.Staser.aseb]
a0cab18dda6eb37cc1fa78bb154782f9	[TR/Rogue.14129.aif] [Win32/Tnega.MXZGUOB] [Trojan.Staser.r4] [Trojan.Win32.Injector] [Win32/Kryptik.CSLQ] [Crypt3.BKDP] [Trojan.Win32.Staser] [Trojan.Win32.Staser.aseg] [Spyware.Dyre] [PWS*Win32/Dyzap] [TSPY_DYZAP.KC] [Trojan.Staser]
93c1c8df15db80673d1008e8fc6ac70a	[JS.Downloader] [Trojan.Script.Nemucod.ebdqck] [JS:Trojan.Downloader.Nemucod.AB] [HEUR.JS.Trojan.b] [JS/Nemucod.jf] [Trojan.Obfus/JS!1.A51E] [JS/Nemucod.YP!tr.dldr]
cef3c92bb1d49a7594eecef174207bf1
297e2efe3080db0d38a6a5f859d9bf18
6e6eb1c6ada95df3fb3a9e22ca4a1d36
c1fa3a10e9e18a8dbceeb34e5b088229
eb2ca9dc2711de4b3e639a4e385c3a25
2f9d5030b7efd5ce4b51a9f8f654f10a	[Js.Trojan.Raas.Auto] [trojan.js.downloader.2]
59049446a2a2eb428b17b9d101c0f9f1	[JS/Locky.AM1!Eldorado] [JS.Downloader] [JS/TrojanDownloader.Nemucod.AFC] [Troj/JSDldr-LW] [JS.DownLoader.1674] [JS/Nemucod.jt] [JS/Locky.AM1!Eldorado] [JS/Dldr.Nemucod.O.27] [TrojanDownloader:JS/Nemucod.FJ] [Troj.Downloader.Script!c] [JS/Obfus.S67] [JS/Nemucod.jt] [Js.Trojan.Raas.Auto] [Trojan.JS.Reverser] [JS/Dldr.LW!tr] [trojan.js.downloader.2]

Whois

Property	Value
Email	ALIASGAR.CHANDRA@GMAIL.COM
NameServer	DNS2.SITE5.COM
Created	2009-04-13 00:00:00
Changed	2012-01-16 00:00:00
Expires	2016-04-13 00:00:00
Registrar	ENOM, INC.

DNS Resolutions

Date	IP Address
2014-12-09	174.121.8.162 (ClassC)
2019-04-08	129.121.5.191 (ClassC)
2019-05-24	91.195.240.87 (ClassC)
2019-07-02	209.99.64.18 (ClassC)
2020-05-04	204.11.56.48 (ClassC)
2020-07-08	208.91.197.46 (ClassC)
2020-09-23	61.4.115.18 (ClassC)
2020-10-18	156.237.248.111 (ClassC)
2021-05-08	156.237.248.79 (ClassC)
2021-05-18	156.237.248.35 (ClassC)
2021-07-18	0.0.0.0 (ClassC)
2021-09-22	47.91.170.222 (ClassC)
2024-11-17	84.32.84.32 (ClassC)
2024-12-08	92.112.198.10 (ClassC)
2024-12-08	92.113.23.81 (ClassC)
2024-12-08	147.79.72.242 (ClassC)
2024-12-08	148.135.128.245 (ClassC)
2024-12-08	147.79.79.110 (ClassC)
2024-12-08	147.79.72.83 (ClassC)
2024-12-08	145.223.124.212 (ClassC)
2024-12-12	77.37.76.244 (ClassC)
2024-12-30	77.37.76.56 (ClassC)
2025-01-08	145.223.124.215 (ClassC)
2025-01-08	91.108.127.72 (ClassC)
2025-01-08	92.113.16.247 (ClassC)
2025-01-11	147.79.79.5 (ClassC)
2025-01-11	88.223.87.167 (ClassC)
2025-01-11	145.223.124.130 (ClassC)
2025-01-11	147.79.79.21 (ClassC)
2025-01-16	147.79.120.229 (ClassC)
2025-01-19	148.135.128.54 (ClassC)
2025-01-31	147.79.120.30 (ClassC)
2025-02-02	147.79.79.87 (ClassC)
2025-02-02	148.135.128.134 (ClassC)
2025-02-03	145.223.124.61 (ClassC)
2025-02-03	145.223.124.7 (ClassC)
2025-02-11	145.223.124.83 (ClassC)
2025-02-11	145.223.124.232 (ClassC)
2025-02-12	92.112.198.155 (ClassC)
2025-03-01	212.1.212.169 (ClassC)
2025-03-01	147.79.72.124 (ClassC)
2025-03-02	88.223.87.152 (ClassC)
2025-03-02	92.112.198.178 (ClassC)
2025-03-19	147.79.120.144 (ClassC)
2025-03-23	92.113.16.169 (ClassC)
2025-03-23	77.37.53.186 (ClassC)
2025-03-25	91.108.98.195 (ClassC)
2025-03-25	88.223.87.193 (ClassC)
2025-04-06	147.79.120.111 (ClassC)
2025-04-10	148.135.128.151 (ClassC)
2025-04-13	92.113.23.225 (ClassC)
2025-04-13	147.79.72.151 (ClassC)
2025-04-16	145.223.124.84 (ClassC)
2025-04-16	145.223.124.125 (ClassC)
2025-04-18	92.112.198.168 (ClassC)
2025-05-03	92.112.198.90 (ClassC)
2025-05-04	147.79.72.92 (ClassC)
2025-05-04	147.79.79.103 (ClassC)
2025-05-10	91.108.98.155 (ClassC)
2025-05-10	145.223.124.240 (ClassC)
2025-05-13	145.223.124.176 (ClassC)
2025-05-13	147.79.79.70 (ClassC)
2025-05-13	77.37.83.63 (ClassC)
2025-05-13	88.223.87.6 (ClassC)
2025-05-18	35.227.188.200 (ClassC)
2025-05-27	145.223.124.179 (ClassC)
2025-05-27	145.223.124.194 (ClassC)
2025-06-03	147.79.72.207 (ClassC)
2025-06-03	147.79.72.106 (ClassC)
2025-06-18	77.37.76.213 (ClassC)
2025-06-21	148.135.128.197 (ClassC)
2025-06-24	92.113.23.26 (ClassC)
2025-06-27	145.223.124.138 (ClassC)
2025-06-27	147.79.79.0 (ClassC)
2025-06-27	147.79.72.32 (ClassC)
2025-06-27	77.37.76.133 (ClassC)
2025-07-04	92.112.198.162 (ClassC)
2025-08-05	62.72.28.98 (ClassC)

HTTP/1.1 200 OKDate: Thu, 15 Aug 2019 20:03:12 GMTServer: ApacheSet-Cookie: vsid925vr3134449924407053; expiresTue, 13-Aug-2024 20:03:12 GMT; Max-Age157680000; path/; domainarabian-star.com; HttpOnlyX-

!DOCTYPE html PUBLIC -//W3C//DTD HTML 4.01//EN http://www.w3.org/TR/html4/strict.dtd>html>head>script typetext/javascript>var abp;/script>script typetext/javascript srchttp://arabian-star.com/px.js?ch1>/script>script typetext/javascript srchttp://arabian-star.com/px.js?ch2>/script>script typetext/javascript>function handleABPDetect(){try{var imglog  document.createElement(img);imglog.style.height0px;imglog.style.width0px;imglog.srchttp://arabian-star.com/sk-logabpstatus.php?aR0l2MW1HL09EWkhhbjY0MXFpU29Ya1dudTZYY3BvNVZZMGYrT3UraVJ2ZHpYQ1JnL3NuOHJuRERKcWIwSTUvUk1JVUdmUWFDL29JL2VWNjY1Q1ZLdGIrV2tWM3YwYkNDdHVjZHgrd3dHN3c9&b+abp;document.body.appendChild(imglog);}catch(err){}}/script>meta nametids contenta13017 b15045 carabian-star.com dtaxo_cat />title>Arabian-star.com/title>meta http-equivContent-Type contenttext/html; charsetUTF-8>meta nameviewport contentwidthdevice-width, initial-scale1, maximum-scale1>style typetext/css>@font-face {font-family: ubuntu-r;src: url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.eot);src: url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.eot?#iefix) format(embedded-opentype),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.woff) format(woff),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.woff2) format(woff2),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.ttf) format(truetype),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.otf) format(opentype),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.svg#ubuntu-r) format(svg);font-weight: normal;font-style: normal;}@font-face {font-family: ubuntu-b;src: url(http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.eot);src: url(http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.eot?#iefix) format(embedded-opentype),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.woff) format(woff),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.woff2) format(woff2),url(http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.ttf) f

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > arabian-star.com

Is this malicious?

Reports

Files that talk to arabian-star.com

Whois

DNS Resolutions

Port 80