Help RSS API Feed Maltego Contact                        

Domain > hanmail.net

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as MALICIOUS

Files that talk to hanmail.net
MD5A/V
d42c1a59b111316f7481770349e653db[HW32.CDB.87f3] [Malware.Packer.OCD]
69105950b2bb95843dea5937bea0e8f0[HW32.CDB.5919] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ]
2a6e7154c7f62a8109dae1b6a6a204c3[SHeur4.BNRB] [TrojanDownloader*Win32/Cutwail.BS]
ebbf2139fa265c6896be78fe8bbd44f7
8853f5fd8f3fd57284ad4c702fcb40a1[Win32/Zbot.G] [W32/Ramnit.C] [Virus*Win32/Ramnit.P] [W32.Ramnit-1]
abe19665682ad3e10ba09471775c150b[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E]
e21b3469b4fc1efddf76d8c89f1ebb2a[Malware.Packer.HGX1] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
9aa81fa022c0b159758efa1bda4f9be1[HW32.CDB.A20b] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dthd] [UnclassifiedMalware] [BackDoor.Slym.13011] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CBNK] [Win32.Backdoor.Hlux.Hwcu] [Trojan.Crypt3] [W32/Kryptik.BD!tr] [Crypt3.OHL] [Backdoor.Win32.Hlux.Ac]
210b6e761b4cb7d71e862606c0f28846[Artemis!210B6E761B4C] [HB_Pushdo-1] [Trojan.Win32.Jorik.Cutwail.prs] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Dropper/Win32.Vidro] [W32/Pushdo.YOY!tr] [SHeur4.BNRB]
971d6821a96e8f41da919db02ebc60da[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]
3fb83eaf2a665f71ac2065f5f6956d50[HW32.CDB.5da2] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cynagk] [Trojan.FakeAV] [Kryptik.CDQY] [Win32/Kelihos.GeEUUIB] [Backdoor.Win32.Hlux.dqkq] [Backdoor.Hlux!m6CCC6SKjdo] [Win32.Backdoor.Hlux.Lose] [Backdoor.Win32.Hlux.DUHE] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aDM]
4211b2d7121c11d5f032e6620030a384[HW32.CDB.Cd7e] [Packed.Win32.Katusha.3!O] [Hlux.ZY] [VirTool:Win32/Obfuscator.WT]
0f5f90b03b49b276d148f7e6be7c30f1[HW32.CDB.27e0] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cxxldj] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.OWUMMQC] [Backdoor.Win32.Hlux.dqeh] [Backdoor.Hlux!9TTR+wn2IWc] [Backdoor.Win32.Hlux.DUHE] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Hpn] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.ArxZ]
db5b440f6419090cd9567f3b33fd3ced[Malware.Packer.HGX1] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
833009a54c295a72ad64ab0941f482fe[Suspicious.Cloud.5] [Kryptik.CCFN] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [TR/Crypt.EPACK.9220] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Mal/FakeAV-UF] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GIF] [Trojan.Win32.Kryptik.BZOO]
b36385662ebdaf40bc3d28f90b6a4751[Spyware.Zbot.USBV] [Trojan] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Foreign]
ddeca0855c9bb584c270ff6c5f0521c2[Artemis!DDECA0855C9B] [WS.Reputation.1] [Backdoor.Win32.Pushdo.qij] [UnclassifiedMalware] [TR/Dldr.Cutwail.4] [TrojanDownloader:Win32/Cutwail] [Win32/Wigon.PH] [W32/Kryptik.AX!tr] [Trj/CI.A]
3220ab9b63a767c299000ea9d9e3a056[HW32.CDB.1b0b] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!u8SUOkHyYnA] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.RbUfAWB] [Backdoor.Win32.Hlux.dpoo] [Trojan.Win32.Hlux.cxxuzn] [TrojWare.Win32.Kryptik.CAUP] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Backdoor.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Lgjg] [Trojan.Crypt_s] [W32/Kryptik.CAXO!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CAXO]
3a44da011fc699a6afc6cc7d07131dd6[HW32.CDB.14e7] [Trojan.Win32.Kryptik.cxajdj] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CAHC] [Trojan.Packed.26527] [Trojan:Win32/Dynamer!ac] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GKZ]
860dd245cbecd656df047b97456d0ad0[HW32.CDB.9069] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.AntiWare!1.9D9B] [W32/Kelihos.KK@mm]

Whois
PropertyValue
Email domain@daumkakao.com
NameServer NS2.DAUM.NET
Created 1997-03-14 00:00:00
Changed 2015-02-26 00:00:00
Expires 2020-03-15 00:00:00
Registrar NETPIA.COM, INC.

DNS Resolutions
DateIP Address
2012-12-2161.111.62.165 (ClassC)
2013-06-17117.52.2.25 (ClassC)
2013-07-12180.70.93.56 (ClassC)
2013-07-23211.244.82.108 (ClassC)
2013-07-26180.70.134.9 (ClassC)
2013-07-26180.70.134.91 (ClassC)
2013-08-12110.45.215.15 (ClassC)
2013-08-14114.108.157.155 (ClassC)
2013-08-22180.70.134.19 (ClassC)
2013-10-09114.108.157.117 (ClassC)
2013-10-09180.70.134.19 (ClassC)
2013-10-09117.52.2.237 (ClassC)
2013-10-09110.45.215.15 (ClassC)
2013-10-09211.244.82.107 (ClassC)
2013-10-0961.111.62.165 (ClassC)
2013-10-09117.52.2.26 (ClassC)
2013-10-09114.108.157.155 (ClassC)
2013-10-09117.52.2.238 (ClassC)
2013-10-09211.244.82.179 (ClassC)
2013-10-09114.108.157.116 (ClassC)
2013-10-09180.70.93.56 (ClassC)
2013-10-09211.244.82.108 (ClassC)
2013-10-09180.70.134.91 (ClassC)
2013-10-0961.111.62.35 (ClassC)
2013-10-09117.52.2.25 (ClassC)
2013-10-09211.244.82.180 (ClassC)
2013-10-15211.244.82.180 (ClassC)
2013-10-26114.108.157.116 (ClassC)
2013-11-01117.52.2.238 (ClassC)
2013-11-02117.52.2.237 (ClassC)
2013-11-17151.249.89.152 (ClassC)
2013-11-2061.111.62.16 (ClassC)
2013-11-20211.244.82.174 (ClassC)
2013-11-20211.244.82.176 (ClassC)
2013-11-20211.110.65.12 (ClassC)
2013-11-20117.52.2.18 (ClassC)
2013-11-22211.244.82.107 (ClassC)
2014-03-05180.70.93.57 (ClassC)
2014-03-07211.244.82.179 (ClassC)
2014-03-24180.70.93.57 (ClassC)
2014-06-18180.70.93.55 (ClassC)
2014-09-1561.111.62.35 (ClassC)
2014-09-20180.70.93.55 (ClassC)
2014-11-21114.108.157.117 (ClassC)
2017-02-02203.217.238.25 (ClassC)
2017-03-19203.217.239.31 (ClassC)
2017-04-0527.0.237.55 (ClassC)
2017-04-1027.0.236.36 (ClassC)
2017-08-29211.231.99.80 (ClassC)
2017-08-29203.133.167.16 (ClassC)
2017-08-29203.133.167.81 (ClassC)
2017-08-29211.231.99.17 (ClassC)
2021-01-20203.217.239.66 (ClassC)
2025-07-17121.53.105.193 (ClassC)
2025-08-08211.249.220.24 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
mx10.hanmail.net2013-05-16211.43.198.35
latte1.hanmail.net2024-11-17211.249.219.23
mx1.hanmail.net2014-03-24211.110.65.13
mx2.hanmail.net2014-06-18180.70.93.97
mx3.hanmail.net2013-05-16114.108.154.202
mx4.hanmail.net2014-06-18180.70.93.98
mx5.hanmail.net2013-05-1661.111.63.27
mx6.hanmail.net2013-04-18114.108.154.240
mx7.hanmail.net2013-05-16211.43.198.48
latte8.hanmail.net2025-05-28211.249.219.23
mx8.hanmail.net2013-05-16211.43.198.75
mx9.hanmail.net2013-05-16211.43.198.83
img-media.hanmail.net2024-11-19211.231.99.68
photo-media.hanmail.net2024-06-25121.53.201.236
pds10.cafe.hanmail.net2014-01-10174.35.30.197
pds20.cafe.hanmail.net2014-11-23174.35.56.80
pds30.cafe.hanmail.net2014-08-16174.35.56.94
pds11.cafe.hanmail.net2014-11-19174.35.56.80
pds21.cafe.hanmail.net2014-01-13174.35.30.77
pds1.cafe.hanmail.net2014-01-09174.35.30.74
pds12.cafe.hanmail.net2014-08-28174.35.56.151
pds22.cafe.hanmail.net2014-12-18174.35.56.94
pds32.cafe.hanmail.net2014-01-08174.35.30.156
pds2.cafe.hanmail.net2015-03-18174.35.56.80
pds13.cafe.hanmail.net2015-01-19174.35.56.94
pds23.cafe.hanmail.net2014-12-18174.35.56.82
pds33.cafe.hanmail.net2013-12-31174.35.30.77
pds3.cafe.hanmail.net2014-01-10174.35.30.150
pds14.cafe.hanmail.net2014-11-25174.35.56.94
pds24.cafe.hanmail.net2014-01-10174.35.30.77
pds34.cafe.hanmail.net2014-08-28174.35.56.98
pds4.cafe.hanmail.net2015-03-27174.35.56.151
pds15.cafe.hanmail.net2014-01-09174.35.30.77
pds25.cafe.hanmail.net2014-12-18174.35.56.155
pds35.cafe.hanmail.net2014-08-28174.35.56.80
pds5.cafe.hanmail.net2014-01-09174.35.30.83
pds16.cafe.hanmail.net2014-01-09174.35.30.197
pds26.cafe.hanmail.net2014-12-18174.35.56.94
pds36.cafe.hanmail.net2014-01-08174.35.30.213
pds6.cafe.hanmail.net2014-01-10174.35.30.200
pds17.cafe.hanmail.net2014-01-14174.35.30.83
pds27.cafe.hanmail.net2015-04-01174.35.56.81
pds37.cafe.hanmail.net2015-03-20174.35.56.151
pds7.cafe.hanmail.net2014-01-09174.35.30.77
pds18.cafe.hanmail.net2014-10-20151.249.94.20
pds28.cafe.hanmail.net2014-01-14174.35.30.197
pds38.cafe.hanmail.net2014-08-18174.35.56.151
pds8.cafe.hanmail.net2014-08-18174.35.56.94
pds19.cafe.hanmail.net2014-09-11174.35.56.142
pds29.cafe.hanmail.net2014-01-17174.35.30.83
pds39.cafe.hanmail.net2015-03-26174.35.56.150
pds9.cafe.hanmail.net2014-01-17174.35.30.77
image.hanmail.net2024-12-20121.53.202.238
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information