Help RSS API Feed Maltego Contact                        

Domain > gtms01.alicdn.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to gtms01.alicdn.com
MD5A/V
d247b19c1b800a1556c7d302f80834eb[Artemis!D247B19C1B80] [Mal/Behav-010] [BehavesLike.Win32.StartPage.jh] [Trojan.SuspectCRC]
25190c93399e76348671ddc3f3c92cd0[W32.Clod55e.Trojan.1b32] [Backdoor.VB.jyc] [Backdoor.VB.Win32.7238] [Backdoor/VB.jyc] [Trojan.Win32.VB.gwlya] [W32/Backdoor2.GITN] [Backdoor.Win32.VB.jyc] [Backdoor.VB!K8mb9j4P4k8] [Backdoor.Win32.A.VB.311296.H] [Backdoor.Win32.VB.~O] [Trojan.Click3.5816] [BDS/VB.jyb] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Trojan[Backdoor]/Win32.VB] [Trojan:Win32/Provis!rts] [W32/Backdoor.XNIO-8368] [Trojan/Win32.Xema] [Trojan.VBRA.012924] [PE:Trojan.StartPage!1.6871] [Backdoor.Win32.VB] [W32/VB.JYC!tr.bdr] [BackDoor.VB.ICO] [Backdoor.Win32.VB.ab] [Win32/Backdoor.dd2]
f9959417ac8d938452948c66891853ce[BehavesLike.Win32.BadFile.fc] [Win32.Trojan.Fresh.Hcsr] [PossibleThreat.SB!tr.dldr]
886e1510a3fcdda160a3461965623501[Artemis!88156F8F2748] [Trojan.FakeATI] [Infostealer.Limitail] [TROJ_GE.529FCC97] [Zip.Suspect.WinDoubleExtension-zippwd-2] [Backdoor.Win32.Androm.fcyl] [Win32.Trojan.Inject.Auto] [Troj/MSIL-AMR] [Trojan.PWS.Stealer.13025] [TR/Dropper.MSIL.87001] [Backdoor.Win32.Androm.AI] [MSIL/Spy.LimitLogger.A] [Trojan.Win32.Resetter] [MSIL5.ROY] [Trj/Chgt.H]
e8baa9d588fd4969d194eb14f3490d27[W32.WasamalaX.Trojan] [Trojan-Dropper.Win32.Injector!O] [Trojan.Orsam.A5] [Trojan-FBJW!E8BAA9D588FD] [Trojan.Downloader] [Trojan.Llac.Win32.38707] [Trojan.Win32.KillProc.bfqtoc] [TrojanDownloader.D] [Win32/EXEEmbedded.HORAMQD] [Trojan-Dropper.Win32.Injector.hxbu] [Trojan.DR.Injector!+LoCaqxpzbs] [Trojan.KillProc.21800] [TR/Graftor.65786] [TrojanDropper.Injector.bmmj] [Trojan[Dropper]/Win32.Injector] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Sisproc] [Dropper/Win32.Injector] [W32/Trojan.NXES-2340] [TrojanDropper.Injector] [Trojan.Win32.Injector.al] [Adware.Win32.Dropper]
67b4b2433c45df797fd95cff59ddc733[W32.Clod3d6.Trojan.426d] [Trojan/W32.Vilsel.204800.C] [Artemis!67B4B2433C45] [Trojan.Vilsel.Win32.7281] [Trojan/Vilsel.agqy] [Trojan.Win32.Vilsel.cwsdd] [Trojan.Win32.Vilsel.agqy] [Trojan.Vilsel!PEvXyqIpQ9A] [Trojan.Win32.Vilsel.204800] [UnclassifiedMalware] [Trojan.DownLoader4.57163] [Trojan/Vilsel.hre] [Trojan/Win32.Vilsel] [Win32.Troj.Vilsel.(kcloud)] [Trojan.Win32.Vilsel] [W32/Vilsel.AGQY!tr]
e682b625ae543d6b059baa49569954db[HW32.Packed.4BA6] [Trojan.MicroJoiner.A] [Suspicious.MH690.A] [Downloader] [TROJ_MICROJOIN.W] [Trojan.Dropper-4960] [Trojan.Win32.Microjoin.jkzg] [TrojWare.Win32.TrojanDownloader.Tiny.~BU] [Trojan.Packed.1722] [Mal/Dropper-C] [TrojanDropper.Microjoin.acm] [Trojan:Win32/Bulta!rfn] [Virus.Win32.Heur.c] [Trojan-PWS.Win32.LdPinch] [W32/Dropper.MLTR!tr] [Dropper.Microjoin] [Win32/Trojan.ffd]
c0e13eb1c1ee22909675523ab79a67e7[Trojan.Downloader-131535] [Trojan-Downloader.Win32.NSIS]
cd96b8e011f24a335a6552ba80d4ada0
3e5e6f3a129ee402b5fd96d07cb7f442
961c0ed105b1f4ade335051a3a1b0816
f10a08559039385e7a332c22a1189448
0076e803d38e949f4afb0e6b4b7604fc[HW32.Packed.29E9] [Riskware.Win32.StartPage.dugfqz] [W32/S-e743b39f!Eldorado] [SAPE.NoobyProtect.1] [not-a-virus:RiskTool.Win32.StartPage.be] [Riskware.NoobyProtect!] [PE:Malware.Strictor!6.2570] [TrojWare.Win32.Amtar.KNB] [Trojan.Black.Win32.29613] [W32/S-e743b39f!Eldorado] [Trojan.Strictor.DF348] [Trojan/Win32.HDC] [Trj/CI.A] [Trojan.Crypt4] [Riskware/StartPage] [Crypt4.LIE] [Hacktool.Win32.StartPage.be]
4dfbb1ec074556e028ea030939d8e9d6
95b9ef033c6bc953a744f8268d538413
cce848669f6b38b31f023b06b3f576da[BehavesLike.Win32.Dropper.tc]

Whois
PropertyValue
Email dnsadmin@hk.alibaba-inc.com
NameServer NSHZ.ALIBABAONLINE.COM
Created 2008-06-25 00:00:00
Changed 2014-06-12 00:00:00
Expires 2016-06-25 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions
DateIP Address
2013-10-1466.102.255.40 (ClassC)
2013-10-1966.102.255.50 (ClassC)
2013-10-31114.80.174.40 (ClassC)
2013-12-03180.149.155.120 (ClassC)
2013-12-10114.80.174.50 (ClassC)
2013-12-10180.149.155.110 (ClassC)
2014-01-0727.221.24.240 (ClassC)
2014-01-0927.221.24.250 (ClassC)
2014-06-17195.59.70.250 (ClassC)
2014-06-20195.27.31.240 (ClassC)
2014-07-15195.27.31.250 (ClassC)
2014-07-15195.59.70.240 (ClassC)
2014-07-24199.117.103.138 (ClassC)
2014-07-2563.85.36.16 (ClassC)
2014-08-0467.132.183.51 (ClassC)
2014-08-0565.126.84.40 (ClassC)
2014-08-1396.17.111.27 (ClassC)
2014-08-1496.17.111.67 (ClassC)
2014-08-19129.7.130.133 (ClassC)
2014-08-20199.117.103.128 (ClassC)
2014-08-20199.117.103.88 (ClassC)
2014-08-2063.85.36.24 (ClassC)
2014-08-2263.85.36.18 (ClassC)
2014-08-2267.135.105.130 (ClassC)
2014-08-25199.117.103.59 (ClassC)
2014-08-27199.117.103.136 (ClassC)
2014-08-2723.62.236.27 (ClassC)
2014-08-2923.66.230.9 (ClassC)
2014-08-2923.66.230.75 (ClassC)
2014-09-0523.67.242.34 (ClassC)
2014-09-09165.254.155.90 (ClassC)
2014-09-11204.95.26.9 (ClassC)
2014-09-15205.185.206.168 (ClassC)
2014-09-2223.67.244.57 (ClassC)
2014-09-2423.62.236.10 (ClassC)
2014-09-2563.156.193.154 (ClassC)
2014-09-27199.117.103.145 (ClassC)
2014-09-28165.254.114.26 (ClassC)
2014-10-01165.254.206.122 (ClassC)
2014-10-1023.63.227.192 (ClassC)
2014-10-145.178.43.10 (ClassC)
2014-10-145.178.43.18 (ClassC)
2014-10-1423.15.4.16 (ClassC)
2014-10-1423.15.4.8 (ClassC)
2014-10-155.178.43.50 (ClassC)
2014-10-155.178.43.32 (ClassC)
2014-10-165.178.43.48 (ClassC)
2014-10-2267.132.30.123 (ClassC)
2014-10-24128.177.96.97 (ClassC)
2014-10-28128.177.96.10 (ClassC)
2014-10-28128.177.96.26 (ClassC)
2014-11-02205.185.206.170 (ClassC)
2014-11-03198.173.2.11 (ClassC)
2014-11-04198.173.2.56 (ClassC)
2014-11-0423.61.194.234 (ClassC)
2014-11-05205.185.206.147 (ClassC)
2014-11-07165.254.94.11 (ClassC)
2014-11-09165.254.207.72 (ClassC)
2014-11-11107.14.32.11 (ClassC)
2014-11-15165.254.206.161 (ClassC)
2014-11-16184.25.56.90 (ClassC)
2014-11-19184.25.56.173 (ClassC)
2014-11-22165.254.94.147 (ClassC)
2014-11-23165.254.206.160 (ClassC)
2014-11-27165.254.207.33 (ClassC)
2014-12-01204.93.46.171 (ClassC)
2014-12-01204.93.46.195 (ClassC)
2014-12-10165.254.206.114 (ClassC)
2014-12-10165.254.206.147 (ClassC)
2014-12-17165.254.206.74 (ClassC)
2014-12-18204.93.47.194 (ClassC)
2014-12-21184.27.202.89 (ClassC)
2015-11-2847.89.67.240 (ClassC)
2016-01-1547.89.67.245 (ClassC)
2017-07-2766.231.239.96 (ClassC)
2017-09-06213.244.178.220 (ClassC)
2017-09-0780.231.126.224 (ClassC)
2017-09-0880.231.126.240 (ClassC)
2017-09-2266.102.255.43 (ClassC)
2017-12-0166.231.239.95 (ClassC)
2017-12-07121.194.7.219 (ClassC)
2017-12-08203.69.105.236 (ClassC)
2017-12-11111.26.158.148 (ClassC)
2017-12-11183.110.156.110 (ClassC)
2017-12-13202.47.28.112 (ClassC)
2017-12-16119.84.36.240 (ClassC)
2017-12-18157.255.144.95 (ClassC)
2017-12-20113.200.101.227 (ClassC)
2017-12-2147.89.64.240 (ClassC)
2017-12-2636.250.235.95 (ClassC)
2017-12-2739.130.137.108 (ClassC)
2018-01-01180.149.155.50 (ClassC)
2018-01-06122.72.94.227 (ClassC)
2018-01-08123.53.182.249 (ClassC)
2018-03-12118.212.227.5 (ClassC)
2018-03-13183.110.156.92 (ClassC)
2018-03-28150.138.211.30 (ClassC)
2018-04-3042.123.102.96 (ClassC)
2018-05-021.27.242.125 (ClassC)
2018-05-1836.250.235.96 (ClassC)
2018-06-01117.180.227.228 (ClassC)
2018-06-07117.174.128.240 (ClassC)
2018-06-13211.144.94.36 (ClassC)
2018-06-13116.77.74.99 (ClassC)
2018-06-19117.157.225.253 (ClassC)
2018-06-27171.8.242.188 (ClassC)
2018-07-07202.47.28.99 (ClassC)
2018-07-07202.47.28.98 (ClassC)
2018-07-09180.136.97.241 (ClassC)
2018-07-1658.30.206.172 (ClassC)
2018-07-1658.30.206.180 (ClassC)
2018-07-20111.1.160.98 (ClassC)
2018-07-23111.13.140.150 (ClassC)
2018-07-29202.105.176.71 (ClassC)
2018-08-1847.88.135.254 (ClassC)
2018-09-2847.89.66.240 (ClassC)
2019-04-0666.102.255.45 (ClassC)
2019-06-1147.89.68.241 (ClassC)
2019-06-2047.246.2.254 (ClassC)
2019-08-0847.246.19.253 (ClassC)
2019-08-2947.246.22.253 (ClassC)
2019-09-3047.246.19.254 (ClassC)
2019-10-0247.246.17.254 (ClassC)
2019-11-1147.246.18.253 (ClassC)
2019-12-0647.246.23.254 (ClassC)
2021-12-281.193.218.97 (ClassC)
2023-07-158.48.85.251 (ClassC)
2024-01-13163.181.92.148 (ClassC)
2024-03-158.48.85.252 (ClassC)
2024-03-298.25.82.236 (ClassC)
2024-04-02163.181.50.251 (ClassC)
2024-04-1347.246.23.248 (ClassC)
2024-07-108.25.82.217 (ClassC)
2025-03-3047.246.23.250 (ClassC)
2025-04-0447.246.23.251 (ClassC)
2025-06-1447.246.20.173 (ClassC)
2025-07-2547.246.23.187 (ClassC)
2025-08-1247.246.23.188 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
g20.alicdn.com2023-10-0447.246.24.251
akamaissl0.alicdn.com2024-06-1358.218.215.159
sc01.alicdn.com2023-08-04184.28.50.49
ae01.alicdn.com2023-08-1523.75.208.45
gwl01.alicdn.com2024-11-258.38.121.229
sm01.alicdn.com2023-10-168.45.52.251
atms01.alicdn.com2015-01-2723.74.9.223
gtms01.alicdn.com2014-10-1423.15.4.16
cbu01.alicdn.com2015-04-29222.73.134.40
o201411.alicdn.com2025-01-078.38.121.230
a1.alicdn.com2021-07-2747.246.23.253
hdc1.alicdn.com2014-08-18195.27.31.240
gd1.alicdn.com2014-08-19195.27.31.240
yqfile1.alicdn.com2024-04-12163.181.56.244
g-search1.alicdn.com2015-04-02101.226.178.100
g.search1.alicdn.com2013-10-1366.102.255.40
gaitaobao1.alicdn.com2014-06-03195.27.31.240
gshop1.alicdn.com2014-07-30134.159.210.110
gdsns1.alicdn.com2025-07-28140.205.122.66
gdt1.alicdn.com2024-04-04163.181.56.244
gsctst1.alicdn.com2025-03-088.25.82.193
gju1.alicdn.com2015-07-2966.102.255.50
gw1.alicdn.com2013-11-0566.102.255.50
sc02.alicdn.com2023-10-2723.38.191.9
ae02.alicdn.com2023-08-1523.54.19.89
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information