Domain > dfghjklkjhghj.p.fl1.fo.ru

More information on this domain is in AlienVault OTX

Files that talk to dfghjklkjhghj.p.fl1.fo.ru

MD5	A/V
1cbd1fe7a7412d1e19f280eb99bffb8d	[Trojan*Win32/Bagsu!rfn]
5af79df44ad0972a949367f7fa82208e	[Trojan.DownLoader13.21047] [Trojan.Atros] [Trojan.Passwords.FD] [Trojan*Win32/MultiInjector.A!rfn] [Atros.ADRY] [Backdoor.DarkKomet.ffog.mfxc]

DNS Resolutions

Date	IP Address
2024-12-28	212.118.48.121 (ClassC)

HTTP/1.1 404 Not FoundServer: openresty/1.21.4.1Date: Sat, 02 Dec 2023 09:02:01 GMTContent-Type: text/html; charsetutf-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingX-Frame-Opt

!DOCTYPE html>html ng-appYepCom classforu-app ng-class{autooverflow: currentState  preview || currentState  localpreview}>   head>    link relpreload href/assets/application-foru-preview-cutted-08a4892716e660cc732ee0e24b0753dcbbbcc0955d11635d3cad50babfa5bfba.css asstyle >    link relpreload hrefhttps://counter.web.money/h.js asscript>        link relpreload href/assets/preview-67f6aacd8b97f47b7222a6a5096b5895e21728c53eb169d40cefd0f03eee3e75.js asscript>    script>        function getSessionCookie(n) {            var m  document.cookie.match(new RegExp(            (?:^|; ) + n.replace(/(.$?*|{}()\\/+^)/g, \$1) + (^;*)            ));            return m ? decodeURIComponent(m1) : undefined;        }        function setSessionCookie(e,o,n{}){            (n{path:/}).expires instanceof Date&&(n.expiresn.expires.toUTCString());            var tencodeURIComponent(e)++encodeURIComponent(o);            for(var e in n){t+; +e;var one;!0!o&&(t++o)}            document.cookiet        }        function guidSessionGenerator() {            var S4  function() {            return (((1+Math.random())*0x10000)|0).toString(16).substring(1);            };            return (S4()+S4()+-+S4()+-+S4()+-+S4()+-+S4()+S4()+S4());        }        var sessionId getSessionCookie(session_id);        if (!sessionId){            sessionId guidSessionGenerator();            setSessionCookie(session_id, sessionId);        }        window.onerror  function (msg, url, lineno, columnNo, error) {            console.log(ONERRORR);            console.error(msg, error, lineno, columnNo, url);            var errordata  {};            errordatamsg  msg;            errordataurl  url;            errordatalineno  lineno;            errordatacolumnno  columnNo;            if (error) {                errordataerror  error;                errordatastacktrace  error.stack;             } else {                errordataerror  null;                errordatastacktrace  null;;            }                        errordatauserurl  window.location.href;            errord

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > dfghjklkjhghj.p.fl1.fo.ru

Is this malicious?

Files that talk to dfghjklkjhghj.p.fl1.fo.ru

DNS Resolutions

Port 80