Help RSS API Feed Maltego Contact                        

Domain > b.deltaheavy.ru

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to b.deltaheavy.ru
MD5A/V
009b0d42ff07fd8506d241f8c19794cf[Inject.AYPN] [Heur.Suspicious] [SScope.Trojan.Gamarue.19607] [Win32/Bundpil.AM] [Trojan.Win32.Kivzen] [W32/Kryptik.BBYD!tr] [Trj/CI.A]
8bdfb5f4f2292eba9a2e68eb1aab7840[Trojan-Downloader/W32.Andromeda.299008.B] [Trojan.Injector.HO] [Trojan/Bundpil.bn] [Trojan.DR.Injector!PmRYwtcWRnI] [Win32/Bundpil.BN] [TROJ_SPNR.15HD13] [Trojan.Win32.Injector.cqjrdc] [Win32.Worm.Bundpil.Eerv] [TrojWare.Win32.Injector.AJPG] [BackDoor.Andromeda.178] [Dropper.Injector.Win32.57548] [TROJ_SPNR.15HD13] [BehavesLike.Win32.Worm.dh] [TrojanDropper.Injector.bjxt] [TR/Spy.ZBot.1165488] [Win32.Troj.Injector.IV.(kcloud)] [Worm:Win32/Gamarue.F] [Trojan.Symmi.D65A8] [Trojan/Win32.Androm] [W32/Worm-FKU!Gamarue] [BScope.Malware-Cryptor.Balbatun.1713] [Trj/Dtcontx.F] [Virus.Win32.Dropper] [W32/Wauchos.LB!tr] [Luhe.Fiha.A] [Trojan.Win32.Injector.40] [Win32/Trojan.Dropper.fce]
523f06e7675191f18454a1128bb5a267
a0571b751241d7bc042389daace0f409
9c4aff3202bf59fdd1b15d63c308cf8e

DNS Resolutions
DateIP Address
2013-07-155.39.220.224 (ClassC)
2013-09-0379.124.90.226 (ClassC)
2014-05-08109.70.26.37 (ClassC)
2015-06-28195.22.26.248 (ClassC)
2015-07-15195.22.26.231 (ClassC)
2015-07-25195.22.26.252 (ClassC)
2015-08-10195.22.26.253 (ClassC)
2015-08-10195.22.26.254 (ClassC)
2015-09-23195.22.28.199 (ClassC)
2015-10-27195.22.28.197 (ClassC)
2015-12-15195.22.28.196 (ClassC)
2016-01-20195.22.28.198 (ClassC)
2016-09-20195.157.15.100 (ClassC)
2017-12-11195.22.4.21 (ClassC)
2018-03-16172.104.250.45 (ClassC)
2018-03-17172.104.239.66 (ClassC)
2018-03-25172.104.144.83 (ClassC)
2018-03-27172.104.252.53 (ClassC)
2018-04-01172.104.234.67 (ClassC)
2018-04-03172.104.233.254 (ClassC)
2018-04-09172.104.248.192 (ClassC)
2018-04-11172.104.143.27 (ClassC)
2018-04-15172.104.229.77 (ClassC)
2018-04-16172.104.229.165 (ClassC)
2018-04-22172.104.226.46 (ClassC)
2018-04-27139.162.145.69 (ClassC)
2018-05-01172.104.129.226 (ClassC)
2018-05-03172.104.229.208 (ClassC)
2018-05-08172.104.153.171 (ClassC)
2018-05-13172.104.242.224 (ClassC)
2018-05-19139.162.153.43 (ClassC)
2018-05-27139.162.179.58 (ClassC)
2018-05-30172.104.229.200 (ClassC)
2018-06-02172.104.227.133 (ClassC)
2018-06-06139.162.130.25 (ClassC)
2018-06-09139.162.187.49 (ClassC)
2018-06-16139.162.176.60 (ClassC)
2018-06-20139.162.166.103 (ClassC)
2018-06-26139.162.154.50 (ClassC)
2018-06-30172.104.142.175 (ClassC)
2018-07-0385.90.247.202 (ClassC)
2019-06-06212.61.180.100 (ClassC)
2019-06-12212.61.181.100 (ClassC)
2019-06-21195.38.137.100 (ClassC)
2019-06-2764.95.103.184 (ClassC)
2019-07-1964.95.103.183 (ClassC)
2019-08-1572.26.218.68 (ClassC)
2019-08-1872.26.218.71 (ClassC)
2019-08-2372.26.218.70 (ClassC)
2019-09-0572.26.218.79 (ClassC)
2019-10-1772.26.218.81 (ClassC)
2019-11-1572.26.218.77 (ClassC)
2020-02-0563.251.235.85 (ClassC)
2020-02-0972.26.218.84 (ClassC)
2020-03-2064.95.103.189 (ClassC)
2023-07-1672.26.218.86 (ClassC)
2024-05-0735.204.181.10 (ClassC)
2025-01-263.254.94.185 (ClassC)
2025-03-0652.214.217.23 (ClassC)
2025-08-1252.212.150.54 (ClassC)

Subdomains
DateDomainIP
xsso.b.deltaheavy.ru2015-06-26195.22.26.248
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information