Domain > cfweb.com.ar

Welcome! Right click nodes and scroll the mouse to navigate the graph.

More information on this domain is in AlienVault OTX

Files that talk to cfweb.com.ar

MD5	A/V
ded55f58a5734b05b67d68a2b99b7e61	[Artemis!DED55F58A573] [Kryptik.CCHF] [TROJ_KRYPTIK.SGQ] [UnclassifiedMalware] [Win32.Malware!Drop] [TrojanDownloader:Win32/Cutwail.BS] [SScope.Malware-Cryptor.Fareit.2813] [Trojan.Crypt2] [W32/Kryptik.BIXX] [Crypt2.AXYM]

DNS Resolutions

Date	IP Address
2013-11-08	127.0.0.1 (ClassC)
2013-11-08	190.106.129.254 (ClassC)
2025-01-25	138.121.160.204 (ClassC)

HTTP/1.1 302 FoundDate: Sat, 25 Jan 2025 22:27:53 GMTServer: Apache/2.4.52 (Ubuntu)Cache-Control: no-cache, privateLocation: http://cfweb.com.ar/loginSet-Cookie: XSRF-TOKENeyJpdiI6InZDYlNqT0Y2SExucFRYTXFuQ1dTcmc9PSIsInZhbHVlIjoiYVJFa3JWSitwY0paL09MczJ1WnRpQTl5NytnUlFTUlNkN08vWFNqdHBsOTFIN2V2NlpmQnUrZjNkUDdReFhuR2NWZTl6bFhPTmdUa3MveGlZVGxnV2pkdGpENzNvbE4vanVweEdVMFp6ZXp4REJ6eUlOanRjK0JPYnBHaklTT3ciLCJtYWMiOiJiMTg0ZTkxNjA4NWNjZDlmZDNlOTA4MjIzM2I4NGM3YzRmYzJiOWRkYTg1NWRlYzIxNzYyZDg4MmZjYjRiZjA1IiwidGFnIjoiIn0%3D; expiresSun, 26 Jan 2025 10:47:53 GMT; Max-Age44400; path/Set-Cookie: viajatitulares_sessioneyJpdiI6IlN4cDN0Z2IxczVSbTQ5RW5OaktBeEE9PSIsInZhbHVlIjoicm9pMWRaN1lzYXdPcWFQdGtTb0VOVEJKcG9YNk1uem5wREZmTWtlTnlTWDZQYUFzZFJ2Rlc2U0hQS01GN0ova2NsYVg4d3ZNNVNZZ3ZPUWVVTVR2UlBSTmJ4Vm9uYzF0TG1KNHpWdDA2VU9NRHdDSTBicTNSd0FYeWZ6b0RXRlMiLCJtYWMiOiI3NjM1MWZhZTk2MzNlMDIyNzc5YjVkMzVkZTgxN2YzNTBjNWNmNjNkNDFhYTU0NWY0Yzg4ZmIxNDdkMDMxOGIxIiwidGFnIjoiIn0%3D; expiresSun, 26 Jan 2025 10:47:53 GMT; Max-Age44400; path/; httponlyTransfer-Encoding: chunkedContent-Type: text/html; charsetUTF-8

!DOCTYPE html>html>    head>        meta charsetUTF-8 />        meta http-equivrefresh content0;urlhttp://cfweb.com.ar/login />        title>Redirecting to http://cfweb.com.ar/login/title>    /head>    body>        Redirecting to a hrefhttp://cfweb.com.ar/login>http://cfweb.com.ar/login/a>.    /body>/html>

Port 443

HTTP/1.1 302 FoundDate: Sat, 25 Jan 2025 22:27:54 GMTServer: Apache/2.4.52 (Ubuntu)Cache-Control: no-cache, privateLocation: https://cfweb.com.ar/loginSet-Cookie: XSRF-TOKENeyJpdiI6ImNkNTMwc3ovbHUrQjQvcHdMZ0puYkE9PSIsInZhbHVlIjoieWRENnBzK1FwYys2VnJCajBhdzg1MjN1cmtvRWN5M1hXZ2xtazc0N0hmWVY4dWtSYStwdzQ4Y3NLRittY0Myb0hYSmxHbDNWVEhjZzJTSktnUStoUzArYUxyQTN3YkpwUEhQaUF0SzY3U2N0dmpyaHl2dlVYUnJpL2UyQUtYNC8iLCJtYWMiOiIwNDg4ZTFkOWQ5ZTUzZTM5ODZmNGQzNWU1N2Y3ZjY1YmRhODEzODQyZDlmZWZkZTc1MGFjZjRkZGNlNTM2NzJjIiwidGFnIjoiIn0%3D; expiresSun, 26 Jan 2025 10:47:54 GMT; Max-Age44400; path/Set-Cookie: viajatitulares_sessioneyJpdiI6ImNyWlBHN3ZCM1NXMXF2bkxqeFJIOUE9PSIsInZhbHVlIjoidFhGS29NUWNVZWY5TVNyS2txZUJuRTU2cDRqc00xMEhQZXZlNnk4SllhdHVabDlnU0xWdmlibTZ2NDlwUFhRVFNmSmtNQm9KdndCbFB1S2NvZ2xVWVZhYkpVamtsQ1hIN1ZxOWNRYU5IN2xrcEwwNjVoeHlDcVVxYWNMU3U4U3giLCJtYWMiOiJhYjYwOGY3ZDA4MzliYmZjZGU5NWZhZjFkZmM4MWM3Y2JmZDMxOWUyZTg2MDU4Y2MzOTc1YTgwYTY5NjNmOGZiIiwidGFnIjoiIn0%3D; expiresSun, 26 Jan 2025 10:47:54 GMT; Max-Age44400; path/; httponlyTransfer-Encoding: chunkedContent-Type: text/html; charsetUTF-8

!DOCTYPE html>html>    head>        meta charsetUTF-8 />        meta http-equivrefresh content0;urlhttps://cfweb.com.ar/login />        title>Redirecting to https://cfweb.com.ar/login/title>    /head>    body>        Redirecting to a hrefhttps://cfweb.com.ar/login>https://cfweb.com.ar/login/a>.    /body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > cfweb.com.ar

Is this malicious?

Files that talk to cfweb.com.ar

DNS Resolutions

Port 80

Port 443