Help RSS API Feed Maltego Contact                        

Domain > rfr.agent.mail.ru

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to rfr.agent.mail.ru
MD5A/V
3cf5726de455607b7c7df4ecf65580fa[Bicololo.PW] [Win32/DelfFakeIE_i] [BC.Heuristic.Trojan.SusPacked.BF-6.B] [W32/Threat-SysVenFak-based!Maxi] [Riskware/Sim] [Luhe.Fiha.B]
d666f0c4a24ced5e4c76bc514327f8e0[BehavesLike.Win32.AdwareArcadeWeb.ch]
9489eee4bbeff15844dccc8f7674933a[Packed.Win32.Obfuscated.10!O] [TrojanSpy.Usteal.D.mue] [Trojan-FBXH!9489EEE4BBEF] [Spyware.Password.Usteal] [WS.Reputation.1] [UStealer.F] [UnclassifiedMalware] [Trojan.PWS.UFR.3724] [Heuristic.LooksLike.Win32.Suspicious.F!81] [TrojanSpy:Win32/Usteal.D] [Trojan/Win32.Ruftar] [Malware-Cryptor.Limpopo] [Trj/CI.A] [Trojan-Spy.Win32.Usteal] [W32/ZBOT.CDL!tr]

DNS Resolutions
DateIP Address
2013-10-1494.100.187.140 (ClassC)
2013-10-1594.100.187.138 (ClassC)
2013-10-1694.100.187.139 (ClassC)
2013-10-1794.100.187.137 (ClassC)
2013-10-1794.100.189.33 (ClassC)
2014-06-1794.100.187.152 (ClassC)
2014-06-29217.69.139.127 (ClassC)
2014-07-2394.100.180.127 (ClassC)
2015-04-2194.100.180.128 (ClassC)
2015-04-21217.69.139.128 (ClassC)
2025-08-03217.69.139.65 (ClassC)
2025-08-06217.69.139.69 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
rfr.agent.mail.ru2014-07-2394.100.180.127
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information