Help RSS API Feed Maltego Contact                        

Domain > hub5pnc.hz.sandai.net

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to hub5pnc.hz.sandai.net
MD5A/V
cf75fa2ae7be234b6e79aee438aa930e
8626c057ea7f91dfcadc0c2036e38407
902fa7e87e8b186a40a364236ef2c732
46a8d9eeed6e27bf485f1f3c86d7dbcd
8f2b938e14f7e1a852f299191ba4feb5[W32.HfsAdware.170E] [Adware.SpeedingUpMyPC.Win32.403] [Trojan.Nsis.Sogou.dylwew] [Win.Trojan.Sogou] [not-a-virus:Downloader.Win32.Sogou.g] [Application.Win32.Sogou.B] [BackDoor.Gbot.2817] [Adware.Sogou] [Artemis!PUP] [RiskWare[Downloader]/Win32.Sogou.g] [Win32.Application.Sogou.A] [Artemis!8F2B938E14F7] [Adware.Sogou] [Downloader.Sogou] [not-a-virus:Downloader.Sogou]
bc886f93a364b7c550e55125a54c54dd
5aa6a243a30da0e024a179ab9a67333c
8d324e0949ae72820cbb0454645af647[Artemis!8D324E0949AE] [W32/Trojan.CZYU-2749] [Downloader] [Trojan.Win32.Z.Zusy.1968640[h]] [UnclassifiedMalware] [BehavesLike.Win32.Dropper.th] [Trojan.Zusy.D2BA7C] [Trj/GdSda.A] [Win32.Adware.Downloader.Auto] [Atros3.AHBM]
3e9161c04f171db253b980d547692732[W32/Trojan.JBIS-2793] [not-a-virus:AdWare.Win32.Sogou.q] [Trojan.Win32.DownLoader19.ebcgea] [Trojan.Win32.Z.Psw.2289664[h]] [UnclassifiedMalware] [Trojan.DownLoader19.60199] [Tool.Chindo.Win32.217] [BehavesLike.Win32.PackedAP.vc] [Adware/Win32.Download] [Win32.Trojan.Downloader.Qzof] [RiskWare.Chindo!] [Trojan.Win32.PSW] [Riskware/Chindo] [Trj/CI.A]

Whois
PropertyValue
Email wkn@sandai.net
NameServer NS2.XUNLEI.NET
Created 2003-01-27 00:00:00
Changed 2013-08-01 00:00:00
Expires 2017-01-27 00:00:00
Registrar HICHINA ZHICHENG TEC

DNS Resolutions
DateIP Address
2014-11-06119.188.108.56 (ClassC)
2016-08-10119.189.1.17 (ClassC)
2017-04-0258.254.134.226 (ClassC)
2019-06-24119.188.108.12 (ClassC)
2019-06-24119.188.108.56 (ClassC)
2024-01-1647.100.93.132 (ClassC)
2024-02-0247.92.99.221 (ClassC)
2024-02-1647.92.100.53 (ClassC)
2025-05-31139.224.45.180 (ClassC)
2025-07-0947.101.159.232 (ClassC)
2025-07-1439.98.66.213 (ClassC)
2025-08-0547.92.202.235 (ClassC)

Subdomains
DateDomainIP
twin14528vm6.sandai.net2015-02-11111.161.125.232
lb1.c0367.sandai.net2014-01-1458.251.57.175
lb1.c04028.sandai.net2014-09-16163.177.79.253
sr.m.hub.sandai.net2024-07-29116.132.223.136
idx.m.hub.sandai.net2025-05-16112.64.218.154
cncidx.m.hub.sandai.net2024-07-27112.64.218.40
master.hub.sandai.net2019-08-08112.87.43.227
cdn.vabs.hub.sandai.net2023-12-04222.73.33.248
m.v6.shub.sandai.net2025-03-25112.64.218.40
cnc.m.v6.shub.sandai.net2024-09-17112.64.218.64
hub5btmain.v6.shub.sandai.net2024-07-13116.132.218.191
hub5sr.v6.shub.sandai.net2024-10-02112.64.218.40
hub5emu.v6.shub.sandai.net2025-03-10112.64.218.154
hub5idx.v6.shub.sandai.net2024-06-16116.132.223.136
hub5sr.shub.sandai.net2015-03-24123.129.242.139
hub5idx.shub.sandai.net2014-04-30123.129.242.139
hub5c.sandai.net2024-06-29112.64.218.64
down-hezi.sandai.net2025-06-05111.6.201.146
hub5btmain.em.sandai.net2013-11-05123.129.242.139
tel.hub5btmain.em.sandai.net2025-06-27180.163.202.31
hub5pn.em.sandai.net2024-06-1358.144.251.1
hub5sr.em.sandai.net2025-07-07180.163.203.6
cnc.hub5sr.em.sandai.net2025-07-06180.163.203.6
tel.hub5sr.em.sandai.net2025-07-04180.163.203.6
hub5u.em.sandai.net2025-06-1847.102.130.81
hub5emu.em.sandai.net2025-07-09180.163.203.6
hub5btmain.sandai.net2015-02-15123.129.242.139
hub5c.maxthon.sandai.net2024-07-30116.132.223.136
hub5t.maxthon.sandai.net2025-04-29112.64.218.40
hub5u.maxthon.sandai.net2025-04-1947.102.130.81
hub5c.union.sandai.net2024-08-15112.64.218.40
ftp.union.sandai.net2024-04-2561.160.227.237
hub5t.union.sandai.net2024-06-02112.64.218.64
hub5u.union.sandai.net2025-07-0547.92.164.165
hub5pn.sandai.net2014-09-30182.118.14.152
g1.hub5pn.sandai.net2024-06-1358.144.251.1
g2.hub5pn.sandai.net2024-07-04123.6.27.49
g3.hub5pn.sandai.net2024-05-19123.6.27.16
xzb.hub5pn.sandai.net2024-04-08111.206.4.164
cnc.hub5pn.sandai.net2024-09-24111.206.4.176
g1.cnc.hub5pn.sandai.net2025-01-14111.206.4.177
g2.cnc.hub5pn.sandai.net2024-07-29111.206.4.195
g3.cnc.hub5pn.sandai.net2024-06-28111.206.4.195
down.sandai.net2014-02-04112.80.23.153
game3.down.sandai.net2025-07-20106.8.130.190
game4.down.sandai.net2014-03-11112.80.23.132
mac.down.sandai.net2024-06-13180.163.207.107
upgrade.down.sandai.net2024-10-15180.97.147.12
patch.down.sandai.net2024-07-04180.163.145.201
m.down.sandai.net2014-01-2958.222.24.240
com.down.sandai.net2023-11-30101.226.26.218
xmp.down.sandai.net2014-02-06112.80.23.131
down.co.sandai.net2014-02-14112.80.23.160
xmp.down.co.sandai.net2015-02-11112.87.43.16
hub5btmain.wap.sandai.net2025-05-17112.64.218.154
hub5pn.wap.sandai.net2024-04-17211.91.242.37
hub5sr.wap.sandai.net2024-06-16116.132.223.136
hub5u.wap.sandai.net2025-06-1547.102.130.81
hub5emu.wap.sandai.net2024-07-30112.64.218.64
sub.xmp.sandai.net2025-05-31106.14.221.44
hub5pr.sandai.net2025-06-22116.132.219.22
hub5sr.sandai.net2013-09-03123.129.242.139
cnchub5sr.sandai.net2019-10-25112.87.43.227
hub4t.sandai.net2024-06-29112.64.218.154
hub5t.sandai.net2014-09-30123.129.242.139
hub5u.sandai.net2025-06-2147.102.130.81
cnchub5u.sandai.net2025-05-19116.128.216.220
bgphub5u.sandai.net2025-05-1247.92.164.165
hub5emu.sandai.net2015-05-13123.129.242.139
02.rcv.sandai.net2014-11-14119.189.1.39
www.sandai.net2025-07-25112.124.227.84
score.phub.hz.sandai.net2014-11-06163.177.79.152
relay.phub.hz.sandai.net2014-11-0658.254.134.245
hub5sr.shub.hz.sandai.net2024-06-16112.64.218.40
hub5idx.shub.hz.sandai.net2024-11-07112.64.218.40
hub5c.hz.sandai.net2014-11-06123.129.242.140
hub5pnc.hz.sandai.net2014-11-06119.188.108.56
hub5pn.hz.sandai.net2019-10-14118.212.146.21
pmap.hz.sandai.net2014-11-06122.143.5.59
hub5pr.hz.sandai.net2019-06-10119.188.108.13
imhub5pr.hz.sandai.net2019-08-15121.9.209.150
hub5sr.hz.sandai.net2019-08-07112.87.43.227
hubstat.hz.sandai.net2014-11-06123.129.242.154
hub5u.hz.sandai.net2014-11-0658.254.134.201
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information