Domain > mail.bancorp.ru

More information on this domain is in AlienVault OTX

Date	IP Address
2013-05-29	81.25.161.3 (ClassC)
2014-07-23	81.25.161.4 (ClassC)
2015-05-20	81.25.161.4 (ClassC)
2025-03-21	95.182.71.114 (ClassC)

Port 80

HTTP/1.1 200 OKContent-Length: 7075Connection: keep-aliveDate: Thu, 28 Nov 2024 18:52:33 GMTContent-Type: text/html;charsetkoi8-rServer: CommuniGatePro/5.3.5

!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01 Transitional//EN http://www.w3.org/TR/html4/loose.dtd>HTML LANGru DIRLTR>HEAD>    META HTTP-EQUIVContent-Type CONTENTtext/html; charsetkoi8-r>        TITLE>���� � CommuniGate Pro bancorp.ru/TITLE>    link relstylesheet href/SkinFiles/bancorp.ru/GoldenFleece/style.css typetext/css>/HEAD>body background/SkinFiles/bancorp.ru/GoldenFleece/bodybgcolor.gif leftmargin60 rightmargin0 topmargin0 marginwidth0 marginheight0>script>           if(window!top){              win  window;              while(win!top){                 win  win.parent;              }              win.location.href;           }/script>FORM action/ methodpost enctypemultipart/form-data>INPUT typehidden nameFormCharset valuekoi8-r>table stylepadding-left:60px; width100% border0 cellspacing0 cellpadding0>!-- Main Table -->tr>td>table border0 width70% cellspacing2 cellpadding0 aligncenter>tr>    td>/td>    td alignRIGHT>table border0>tr>td aligncenter valignmiddle width180 rowspan2>a hrefhttp://www.communigate.com/ TARGET_blank>img src/SkinFiles/bancorp.ru/GoldenFleece/logo.gif ALTCommuniGate Systems, Inc. width150 height28 border0>/td>/tr>/table>/td>/tr>tr>td colspan2 height25> /td>/tr>tr>td colspan2 alignRIGHT>table width100% border0 cellspacing2 cellpadding5>    tr>            td aligncenter classexternalHeader>����� ���������� � CommuniGate Pro,BR>���������������� ������ bancorp.ru!/td>          /tr>    tr>td aligncenter classexternalTable>table width100% border0 cellspacing2 cellpadding0 height80%>      tr>        td alignLEFT valigntop>table width80% border0 cellspacing2 cellpadding2>						tr>td> /td>td classexternalLink>				a href/login/?>�������������� ����/a>br /> 			/td>/tr>							            tr>                td nowrap classexternalField>��� ������������/td>                td>INPUT NAMEUsername Typetext size20 MaxLength255 value ALT��� ������������>/td>            /tr>tr>                td nowrap classexternalField>������/td>                td>INPUT NAMEPassword Typepassword size20 Max

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

MD5	A/V
9aa81fa022c0b159758efa1bda4f9be1	[HW32.CDB.A20b] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dthd] [UnclassifiedMalware] [BackDoor.Slym.13011] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CBNK] [Win32.Backdoor.Hlux.Hwcu] [Trojan.Crypt3] [W32/Kryptik.BD!tr] [Crypt3.OHL] [Backdoor.Win32.Hlux.Ac]
dde053529fc90359815908c8ee1def65	[FakeSecTool-FCX!DDE053529FC9] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]
fe734b28009c7dd5389f64d72722bb21

Domain > mail.bancorp.ru

Is this malicious?

Files that talk to mail.bancorp.ru

DNS Resolutions

Port 80