Domain > morganlewis.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to morganlewis.com

MD5	A/V
833009a54c295a72ad64ab0941f482fe	[Suspicious.Cloud.5] [Kryptik.CCFN] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [TR/Crypt.EPACK.9220] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Mal/FakeAV-UF] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GIF] [Trojan.Win32.Kryptik.BZOO]
2cea2302f3f5c4280a6990e4e1965a60	[Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxceyl] [Kryptik.CCFN] [TROJ_SPNR.36DM14] [Backdoor.Win32.Hlux.djbj] [Backdoor.Hlux!4usFCOdA3iI] [Trojan.Win32.S.PSW-Tepfer.835600.DB] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BLUU] [Trojan.PWS.Stealer.12891] [TR/Kryptik.oeons] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZDO] [Trojan.Crypt_s] [W32/Hlux.BZDO!tr.bdr] [Crypt_s.GGV] [Win32/Trojan.fec]
4be57c95dd1e77ba6b00af63f6c5d79a	[BackDoor.Slym.1498] [BDS/Kelihos.F.5092] [Win32.PSWTroj.Tepfer.hd.(kcloud)] [Backdoor:Win32/Kelihos.F] [Backdoor/Win32.Kelihos] [Backdoor.Win32.Kelihos] [W32/Kelihos.JI!tr]
70c82520cbc8bacd1515d7e2650b19a1	[HW32.CDB.43cf] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!SzVtl6MNJ18] [Trojan.FakeAV] [Kryptik.CDQY] [Win32/Kelihos.JRJKMf] [Backdoor.Win32.Hlux.dqja] [Win32.Backdoor.Hlux.Aheu] [TrojWare.Win32.Kryptik.CAUP] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [W32/Trojan.WVTP-0899] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.bCBCJ]
914c63052f0694efe5c231d14c135d36	[HW32.CDB.D6a5] [TrojanPSW.Tepfer.r3] [Trojan.PWS.Tepfer!8N7nPFhLHXs] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twri] [Trojan.Win32.Kryptik.cxajaq] [Mal/FakeAV-UF] [UnclassifiedMalware] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Tepfer.CASL!tr.pws] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
d6a71b4d3098eab4dddab30fddbaef35	[FakeSecTool-FCX!D6A71B4D3098] [Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]

Whois

Property	Value
NameServer	CMTU.MT.NS.ELS-GMS.ATT.NET
Created	1996-03-18 00:00:00
Changed	2012-02-09 00:00:00
Expires	2017-03-19 00:00:00
Registrar	NETWORK SOLUTIONS, L

DNS Resolutions

Date	IP Address
2013-05-23	173.252.132.38 (ClassC)
2019-10-10	74.205.23.150 (ClassC)
2021-10-31	67.231.156.179 (ClassC)
2021-10-31	67.231.148.180 (ClassC)
2025-08-13	23.100.43.208 (ClassC)

Port 443

Subdomains

Date	Domain	IP
cpvmgat01.morganlewis.com	2025-04-23	205.196.207.151
eastequinox1.morganlewis.com	2025-04-27	205.196.206.248
westequinox1.morganlewis.com	2025-07-17	205.196.207.248
cpvmgat02.morganlewis.com	2025-05-13	205.196.207.152
eastequinox2.morganlewis.com	2025-04-29	205.196.206.249
westequinox2.morganlewis.com	2025-06-20	205.196.207.249
eastequinox3.morganlewis.com	2025-05-06	205.196.206.250
westequinox3.morganlewis.com	2025-04-07	205.196.207.250
eastequinox4.morganlewis.com	2025-04-22	205.196.206.251
westequinox4.morganlewis.com	2025-04-21	205.196.207.251
covmgat05.morganlewis.com	2025-04-20	205.196.206.158
covmgat07.morganlewis.com	2025-05-29	205.196.206.160
covsa.morganlewis.com	2025-07-01	205.196.206.172
stvsa.morganlewis.com	2025-07-01	205.196.206.127
caseshiftlab.morganlewis.com	2025-06-01	52.251.75.163
remote.pac.morganlewis.com	2025-06-30	205.196.207.168
sfe.morganlewis.com	2024-12-07	13.107.253.70
marketingstage.morganlewis.com	2025-06-30	205.196.206.116
mailstage.morganlewis.com	2025-05-16	205.196.207.165
bighandmobilitystage.morganlewis.com	2025-03-30	205.196.206.117
mobile.morganlewis.com	2025-07-30	205.196.206.110
securefile.morganlewis.com	2025-06-30	205.196.206.132
pac.securefile.morganlewis.com	2025-05-16	205.196.207.132
ent.securefile.morganlewis.com	2025-08-04	205.196.206.132
mobileappstore.morganlewis.com	2024-12-03	13.107.246.70
secure.morganlewis.com	2025-07-30	205.196.206.134
remote.morganlewis.com	2025-06-05	205.196.206.166
stage.remote.morganlewis.com	2025-06-30	205.196.206.98
marketing.morganlewis.com	2025-06-30	205.196.206.142
alumnistg.morganlewis.com	2025-07-30	184.106.11.6
interactionstg.morganlewis.com	2025-06-30	205.196.206.112
alumni.morganlewis.com	2025-04-28	15.197.242.25
relativityuk.morganlewis.com	2025-06-30	212.36.164.21
digital.morganlewis.com	2024-11-23	34.194.253.176
mobiletunnel.morganlewis.com	2025-05-16	205.196.206.133
mail.morganlewis.com	2025-05-09	205.196.207.162
reaction.morganlewis.com	2025-07-01	23.100.43.208
interaction.morganlewis.com	2025-07-14	205.196.206.167
video.morganlewis.com	2025-04-03	205.196.206.141
audio.morganlewis.com	2025-06-30	13.107.253.70
fundstudio.morganlewis.com	2024-11-23	34.194.253.176
rto.morganlewis.com	2024-11-28	13.107.246.70
phl7-worker.morganlewis.com	2025-07-12	20.7.75.198
autodiscover.morganlewis.com	2025-06-14	205.196.207.161
edc-aads.morganlewis.com	2025-05-20	205.196.206.250
clientsites.morganlewis.com	2025-06-02	205.196.206.172
stage.clientsites.morganlewis.com	2025-06-30	205.196.206.127
blogs.morganlewis.com	2025-07-25	23.100.43.208
decisiontools.morganlewis.com	2025-06-29	72.32.188.47
mobileappterms.morganlewis.com	2024-12-07	13.107.253.70
access.morganlewis.com	2025-06-30	13.107.253.70
mlevents.morganlewis.com	2025-07-01	13.107.246.70
lists.morganlewis.com	2025-06-30	20.75.2.191
caseshift.morganlewis.com	2024-11-28	23.54.19.185
autopilot.morganlewis.com	2025-05-16	205.196.206.152
amst.morganlewis.com	2025-06-30	205.196.206.247
coamst.morganlewis.com	2025-07-25	205.196.206.47
cpamst.morganlewis.com	2025-06-30	205.196.207.47
www.morganlewis.com	2013-12-25	173.252.132.38
virecruitselfapply.morganlewis.com	2025-05-07	205.196.206.143
anniversary.morganlewis.com	2024-12-29	172.64.155.254
bighandmobility.morganlewis.com	2025-06-30	205.196.206.135

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]