Domain > foundersomaha.net

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to foundersomaha.net

MD5	A/V
e5f837013e1441d3d74b6e67d2da4aea	[W97M.Downloader.ZI] [O97M.Dropper.JP] [W97M/Downloader.amr] [W97M.Downloader.ZI] [W2KM_DLOADR.VQX] [W97M.Downloader.ZI] [W97M.Downloader.ZI] [W2KM_DLOADR.VQX] [W97M/Downloader.amr] [Troj/DocDl-ZJ] [W97M.Downloader.ZI] [W97M.Downloader.ZI]
68414c445e20bd4c03f7c6ba81377b6a
02042f5aa1b7c603735827985540bb08	[W97M/Downloader.amx] [W2KM_DLOADR.XXQW] [W97M.DownLoader.597] [W2KM_DLOADR.XXQW] [Troj/DocDl-ZQ] [HEUR.VBA.Trojan]
a88aa99fa2b3ddfd7845d3d20a58b617
7268de619b45d400943687495cafdc11
7aff7e6ddad9dce94754948019c8c2c9
a50c0c2dd3732652f3fade6654180b8d
dd2902248d8e34e212a2b1fcd464f1ec
e0c0ab52f004b7af4b2cf4b3e9c2aefb
7445d52e3ac3891e17792f83b1927a4d	[Trojan.CryptoWall] [Trojan.Cryptodefense] [Win32/Filecoder.CO] [TROJ_CRYPWALL.QWQ] [Trojan.Encoder.514] [TROJ_CRYPWALL.QWQ] [Artemis!Trojan] [TR/Crypt.ZPACK.32316] [W32/Filecoder.CO!tr] [Trojan/Win32.CryptoWall] [Ransom:Win32/Crowti.A] [Artemis!7445D52E3AC3] [Win32.Trojan.Inject.Auto] [Trojan.Win32.Filecoder] [Crypt4.CJPC]
c3e5aeb73a9381893a0aedd5a20121cf	[Ransom.Crowti.A4] [Ransom-CWall.a] [Trojan.Injector] [Trojan.Win32.Cryptodef.dwqdnf] [Trojan.Cryptodefense] [Trojan.Cryptodef!] [BackDoor.Andromeda.614] [BehavesLike.Win32.Injector.fh] [Mal/Wonton-BB] [TR/Crypt.Xpack.252397] [Trojan[Ransom]/Win32.Cryptodef] [VirTool:Win32/CeeInject.GM] [Trojan.Symmi.DDE0B] [Trojan/Win32.MDA] [Malware-Cryptor.Limpopo] [Trojan.Win32.Crypt] [W32/Cryptodef.YIV!tr] [Crypt_r.OS]
f8a47e2f47de9f50ac8f926b63d0f523

Whois

Property	Value
NameServer	NS12.DOMAINCONTROL.COM
Created	2014-05-20 00:00:00
Changed	2015-02-12 00:00:00
Expires	2016-05-20 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2018-06-16	50.63.42.1 (ClassC)
2019-05-05	50.63.202.44 (ClassC)
2019-05-19	184.168.221.36 (ClassC)
2019-05-20	50.63.202.60 (ClassC)
2019-05-21	184.168.221.37 (ClassC)
2019-05-23	50.63.202.38 (ClassC)
2019-05-24	184.168.221.39 (ClassC)
2019-05-24	50.63.202.61 (ClassC)
2019-05-25	184.168.221.40 (ClassC)
2019-05-29	50.63.202.55 (ClassC)
2019-05-30	50.63.202.58 (ClassC)
2019-06-11	50.63.202.42 (ClassC)
2019-06-15	184.168.221.44 (ClassC)
2019-06-19	184.168.221.47 (ClassC)
2019-06-23	184.168.221.51 (ClassC)
2019-06-29	184.168.221.57 (ClassC)
2019-07-03	184.168.221.55 (ClassC)
2019-07-03	50.63.202.43 (ClassC)
2019-07-04	184.168.221.56 (ClassC)
2019-07-27	50.63.202.36 (ClassC)
2019-07-28	50.63.202.37 (ClassC)
2019-07-30	184.168.221.49 (ClassC)
2019-07-30	50.63.202.34 (ClassC)
2019-07-30	184.168.221.32 (ClassC)
2019-07-31	50.63.202.32 (ClassC)
2019-07-31	50.63.202.46 (ClassC)
2019-08-15	50.63.202.45 (ClassC)
2019-08-15	50.63.202.50 (ClassC)
2019-08-17	50.63.202.54 (ClassC)
2019-08-18	184.168.221.43 (ClassC)
2019-08-24	184.168.221.53 (ClassC)
2019-08-25	184.168.221.60 (ClassC)
2019-08-25	184.168.221.35 (ClassC)
2019-08-28	50.63.202.51 (ClassC)
2019-08-30	50.63.202.41 (ClassC)
2019-09-04	184.168.221.34 (ClassC)
2019-10-03	50.63.202.52 (ClassC)
2019-10-09	184.168.221.61 (ClassC)
2019-10-10	50.63.202.48 (ClassC)
2019-10-15	184.168.221.41 (ClassC)
2019-10-26	50.63.202.62 (ClassC)
2019-10-26	184.168.221.33 (ClassC)
2019-11-06	50.63.202.47 (ClassC)
2019-11-07	50.63.202.53 (ClassC)
2019-11-21	50.63.202.49 (ClassC)
2019-11-28	184.168.221.58 (ClassC)
2019-11-28	184.168.221.48 (ClassC)
2019-12-04	184.168.221.46 (ClassC)
2019-12-09	184.168.221.54 (ClassC)
2020-01-15	184.168.221.45 (ClassC)
2020-02-03	184.168.221.38 (ClassC)
2020-02-17	50.63.202.39 (ClassC)
2020-02-21	184.168.221.63 (ClassC)
2020-03-19	184.168.221.52 (ClassC)
2020-05-01	50.63.202.56 (ClassC)
2021-01-13	34.102.136.180 (ClassC)
2025-05-28	15.197.148.33 (ClassC)
2025-06-13	3.33.130.190 (ClassC)
2025-08-05	76.223.105.230 (ClassC)
2025-08-12	13.248.243.5 (ClassC)

Subdomains

Date	Domain	IP
www.foundersomaha.net	2025-03-27	15.197.148.33

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]