Domain > mail.stdmail.ru

Welcome! Right click nodes and scroll the mouse to navigate the graph.

More information on this domain is in AlienVault OTX

Files that talk to mail.stdmail.ru

MD5	A/V
2625ca957f30c6fb439d6fb819b96e96	[HW32.CDB.0b76] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [Trojan.Win32.S.PSW-Tepfer.829456.AK] [UnclassifiedMalware] [Trojan.Packed.26581] [Win32.Malware!Drop] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [W32/Trojan.ZDOX-3335] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC]

DNS Resolutions

Date	IP Address
2014-06-18	5.9.176.138 (ClassC)
2025-01-15	94.26.244.106 (ClassC)

Port 80

HTTP/1.1 200 OKConnection: closeDate: Wed, 15 Jan 2025 21:03:31 GMTContent-Type: text/html;charsetutf-8Content-Length: 8677Server: CommuniGatePro/6.1.12

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd>html xmlnshttp://www.w3.org/1999/xhtml xml:langru langru dirltr>head>	meta http-equivContent-Type contenttext/html; charsetutf-8 />		title> Вход в CommuniGate Pro mail.stdmail.ru/title>	link relstylesheet href/SkinFiles/mail.stdmail.ru//style.css typetext/css />  meta http-equivx-dns-prefetch-control contentoff />/head>body background/SkinFiles/mail.stdmail.ru//bodybgcolor.gif>form action/ methodpost enctypemultipart/form-data>input typehidden nameFormCharset valueutf-8 />table width100% border0 cellspacing0 cellpadding0>!-- Main Table -->tr>td>table border0 width70% cellspacing2 cellpadding0 aligncenter>tr>	td> /td>	td alignright>table border0>tr>td aligncenter valignmiddle width230 rowspan2>a hrefhttp://www.communigate.com/ target_blank>img src/SkinFiles/mail.stdmail.ru//logo.gif altCommuniGate Systems, Inc. width216 height41 border0 />/a>/td>/tr>/table>/td>/tr>tr>td colspan2 height25> /td>/tr>tr>td colspan2 alignright>table width100% border0 cellspacing2 cellpadding5>  tr>		td aligncenter classexternalHeader>Добро пожаловать в CommuniGate Pro,br/>Коммуникационный Сервер mail.stdmail.ru!/td>	  /tr>  tr>td aligncenter classexternalTable>table width100% border0 cellspacing2 cellpadding0>	tr valigntop>		td alignleft valignbottom rowspan2>table width80% border0 cellspacing2 cellpadding2>						tr>				td nowrapnowrap classexternalField>Имя Пользователя/td>				td>input nameUsername typetext size20 maxlength255 value altИмя Пользователя />/td>			/tr>tr>          td nowrapnowrap classexternalField>Пароль/td>          td>input namePassword typepassword size20 maxlength99 altПароль />/td>      /tr>			      tr>        td nowrapnowrap classexternalField>Вид Интерфейса/td>        td>select nameSessionSkin>option value* selectedselected>/option>option value>Базовый/option>option valueAquinox>Aquinox/option>option valueCrystal>Crystal/option>option valueGoldenFleece>GoldenFleece/option>option valuemCrystal>mCrystal/option>option valueOverview>Overview/option>option valuePronto>Pronto/option>option valuePronto4>Pronto4/option>option valueSimplex>Simplex/option>option valueViewpoint>Viewpoint/option>option valueXChange>XChange/option>/select>/td>      /tr>			      tr>td classexternalInfo>a hrefhttp://email-guru.com>52.40.234.105/a>/td>td nowrapnowrap classexternalOption>input typecheckbox nameDisableIPWatch altОтключить Защиту по Сетевому Адресу />Отключить Защиту по Сетевому Адресу/td>/tr>      tr>td classexternalInfo>00:03:31/td>td nowrapnowrap classexternalOption>input typecheckbox nameDisableUseCookie altОтключить Защиту по Cookies />Отключить Защиту по Cookies/td>/tr>      tr>td> /td>td nowrapnowrap>input typesubmit namelogin valueВойти altВойти classbutton />/td>/tr>      						tr>td> /td>td classexternalLink>				a href/login/?>Автоматический Вход/a>br /> 			/td>/tr>				    /table>    div classexternalLink>					  /div>          /td>		td valigntop>table width100% border0 cellspacing0 cellpadding5>									tr>td nowrapnowrap classexternalLink>a href/Directory.wssp>Справочник/a>/td>/tr>						tr>td nowrapnowrap classexternalLink>a href/Certificate.cer>Сертификат Безопасности/a>/td>/tr>														tr>td nowrapnowrap classexternalLink>a hrefmailto:postmaster@mail.stdmail.ru>Написать Postmaster-у/a>/td>/tr>		/table>/td>  /tr>tr valignbottom>    td stylepadding:8px;>      a href/hPronto/>img src/SkinFiles/mail.stdmail.ru//Pronto.gif border0 altPronto! />/a>      br/>span classexternalLink stylepadding:5px;>a href/Pronto4/ onclickpopup  window.open(/Pronto4/,_blank,resizableyes,false); return false; target_blank>Pronto! Flash/a>/span>    /td>  /tr>  /table>/td>/tr>/table>/td>/tr>/table>/td>/tr>!-- End Main Table -->tr>td>!-- Hidden -->input typehidden nameSkin value />/td>/tr>!-- End of Hidden -->tr>td height20> /td>/tr>tr valignbottom>td aligncenter colspan2>table border0>tr aligncenter>		td classexternalLink>a href/?Language>Английский(English)/a>/td>		td classexternalLink>a href/?Languagealbanian>Албанский/a>/td>		td classexternalLink>a href/?Languagearabic>Арабский/a>/td>		td classexternalLink>a href/?Languagechinese>Китайский/a>/td>		td classexternalLink>a href/?Languagedutch>Голландский/a>/td>		td classexternalLink>a href/?Languagefinnish>Финский/a>/td>		td classexternalLink>a href/?Languagefrench>Французский/a>/td>		td classexternalLink>a href/?Languagegerman>Немецкий/a>/td>		td classexternalLink>a href/?Languagegreek>Греческий/a>/td>		td classexternalLink>a href/?Languagehebrew>Иврит/a>/td>		td classexternalLink>a href/?Languageitalian>Итальянский/a>/td>	/tr>/table>table border0>tr aligncenter>	td classexternalLink>a href/?Languagejapanese>Японский/a>/td>		td classexternalLink>a href/?Languagekazakh>Казахский/a>/td>		td classexternalLink>a href/?Languagekorean>Корейский/a>/td>		td classexternalLink>a href/?Languagepolish>Польский/a>/td>		td classexternalLink>a href/?Languageportuguese>Португальский/a>/td>		td classexternalLink>a href/?Languagerussian>Русский/a>/td>		td classexternalLink>a href/?Languageslovak>Словацкий/a>/td>		td classexternalLink>a href/?Languagespanish>Испанский/a>/td>		td classexternalLink>a href/?Languagethai>Тайский/a>/td>		td classexternalLink>a href/?Languageturkish>Турецкий/a>/td>		td classexternalLink>a href/?Languageukrainian>Украинский/a>/td>		td classexternalLink>a href/?Languageusa>Английский США/a>/td>/tr>/table>/td>/tr>tr>td aligncenter>table width70% border0 cellspacing2 cellpadding0>  tr styleheight:30px>td> /td>/tr>  tr>td classexternalTable>table width100% border0 cellspacing2 cellpadding5>tr>  td nowrapnowrap classexternalField>Установить Pronto!/td>  td classexternalLink>     span idAirWin32>a href/Pronto4/pronto4.exe>MS Windows/a>/span>     span idAirMacOSX>a href/Pronto4/pronto4.dmg>MacOS X/a>/span>     span idAirOther>a href/Pronto4/pronto4.air>Adobe Air/a> font size-2>a hrefhttp://get.adobe.com/air/ target_blank>(cначала установите Adobe AIR)/a>/font>/span>     script typetext/javascript>!--if(navigator.platform.indexOf(Win32) ! -1) {  document.getElementById(AirMacOSX).style.display  none;  document.getElementById(AirOther).style.display  none;} else if(navigator.platform.indexOf(Mac) ! -1) {  document.getElementById(AirWin32).style.display  none;  document.getElementById(AirOther).style.display  none;} else {  document.getElementById(AirWin32).style.display  none;  document.getElementById(AirMacOSX).style.display  none;}  //  -->/script>  /td>    td classexternalLink idMobileAndroid>a href/SkinFiles/mail.stdmail.ru//pronto.apk>Android/a>/td>  td classexternalLink idMobileiPhone>a hrefhttp://itunes.apple.com/app/pronto%21/id490538357 target_blank>Apple iPhone/iPad/a>/td>/tr>/table>/td>/tr>  /table>/td>/tr>  /table>/form>/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > mail.stdmail.ru

Is this malicious?

Files that talk to mail.stdmail.ru

DNS Resolutions

Port 80