Domain > shagunproperty.com

More information on this domain is in AlienVault OTX

Reports

http://blog.dynamoo.com/2016/08/malware-spam-pleas...

Files that talk to shagunproperty.com

MD5	A/V
f118d1708b7cde3447f9da66d3710c13
c83ae1f21a72f1805a59a0b83d28e6db
1d56b7ab1ec65c1f47f82be95e2843de
fd4626d15927493ba1199c1f5c0bfbf4
dcb3a365ca10c3660a9407cba8db0914	[Troj/DocDl-CKM] [W2KM_DLOADR.JDD] [PP97M/Downldr] [W2000M/Dldr.Locky.AM.14322] [W97M/Downloader] [W97M/Downloader.bcc] [O97M/Downloader]
615771a5c7b7b7413f17eb0a8c9e4774	[HEUR.VBA.Trojan.d] [W97M/Downloader] [O97M/Downloader] [virus.office.obfuscated.1]
03c9ee245a244f48dccfa6598823d869	[HEUR.VBA.Trojan.d] [W97M/Downloader] [O97M/Downloader]
489365277ecde94b3ecb73933b9f9290	[HEUR.VBA.Trojan.d] [W97M/Downloader] [O97M/Downloader]
17393b15bc5bec944be8e0e800d1acc9	[W97M.Downloader] [W2KM_LOCKY.DZ] [X97M.DownLoader.114] [W2KM_LOCKY.DZ] [HEUR.VBA.Trojan.d] [W97M/Downloader] [O97M/Downloader]
85d6d7a183fb6ff695790696a39db1e9	[W97M.Downloader.CTP] [W97M.Downloader.CTP] [X97M.Downloader.BQ] [W97M.Downloader] [W2KM_LOCKY.DZ] [W97M.Downloader.CTP] [Trojan.Script.MLW.ecmkzi] [W97M.Downloader.CTP] [Troj/DocDl-DCK] [X97M.Downloader.BQ] [X97M.DownLoader.114] [W2KM_LOCKY.DZ] [W97M/Downloader.bdj] [TrojanDownloader:O97M/Adnel.A] [HEUR.VBA.Trojan.d] [W97M/Downloader] [W97M.Downloader.CTP] [Downloader-FBFX!CEDF050F1452] [O97M/Downloader] [Macro.Trojan.Dropperx.Auto]
df4efddd89e2a8dbf6e9b4ef6892772f
818f47b80b260113b090385e90261e42	[Trojan.Script.Heuristic-js.iacgm]
64586d513796a25515c6d3f86c8344a5	[Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [SCRIPT.Virus] [JS/Nemucod.FE83!tr.dldr]
3c5a4f81f94b3d8fa56f624a7c70be30	[JS/Locky.AW!Eldorado] [Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [SCRIPT.Virus] [JS/Locky.AW!Eldorado] [JS/Nemucod.FE83!tr.dldr]
f8df149d03535a94a27b31c7c09ed847	[Troj.Js.Crypt!c] [JS/Locky.AW!Eldorado] [JS/TrojanDownloader.Nemucod.ASZ] [Trojan.JS.Crypt.ay] [Trojan.Script.Heuristic-js.iacgm] [Js.Trojan.Raas.Auto] [JS.DownLoader.2056] [JS/DwnLdr-OIG] [JS/Locky.AW!Eldorado] [TrojanDownloader:JS/Nemucod] [HEUR.JS.Trojan.b] [JS/Downloader] [Win32.SuspectCrc] [JS/Nemucod.FE83!tr.dldr]
b0d260affc31c0a767064d0131886f28
94e99e260b46ff5311a28802ca214893
526b607c48d27678744786bac8772f64
f40924086ebc395d9de532881d30f50a
7e2795bdcd70e0c8344785e341f1fbc9

Whois

Property	Value
NameServer	NS2.FACTUMTECH.COM
Created	2015-05-11 00:00:00
Changed	2016-05-09 00:00:00
Expires	2017-05-11 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2015-05-28	182.18.143.189 (ClassC)
2016-03-22	43.242.215.197 (ClassC)
2016-08-27	50.63.202.54 (ClassC)
2018-09-03	103.108.220.2 (ClassC)
2018-09-04	103.108.220.23 (ClassC)
2018-09-13	103.108.220.231 (ClassC)
2019-03-26	103.108.220.221 (ClassC)
2019-08-10	139.59.18.209 (ClassC)
2019-08-25	103.86.176.20 (ClassC)
2019-09-07	103.108.220.126 (ClassC)
2024-07-30	154.19.255.181 (ClassC)
2024-08-27	47.76.218.182 (ClassC)
2025-08-05	67.223.118.18 (ClassC)

Port 443

HTTP/1.1 403 ForbiddenCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Server: Apache/2.2.16 (Debian)Content-Length: 13797

!DOCTYPE HTML>html langen-US>    head>        meta charsetUTF-8 />        meta http-equivcontent-type contenttext/html; charsetutf-8 />meta namerobots contentnoindex, nofollow />meta namekeywords    contentjoomla, Joomla, joomla 1.5, wordpress 2.5, Drupal />meta namedescription contentJoomla! />meta namegenerator    contentJoomla! 1.5 - Open Source Content Management />meta namegenerator contentWordPress 2.5 />        meta http-equivContent-Type contenttext/html;charsetUTF-8 />        meta nameviewport contentwidthdevice-width, initial-scale1, maximum-scale1 />        title>Waiting for the redirectiron.../title>        style typetext/css>            body {background-color: #ffffff; font-family: Helvetica Neue, Helvetica,Arial,sans-serif;}            html, body {width: 100%; height: 100%; margin: 0; padding: 0;}            span {color: #878787; font-size: 12pt;  text-align: center;}            h1 {color: #878787; font-size: 18pt; text-align: center;}            .link {margin-top: 40px;}            .sk-circle {margin: 80px auto;width: 100px;height: 100px;position: relative;}            .sk-circle .sk-child {width: 100%;height: 100%;position: absolute;left: 0;top: 0;}            .sk-circle .sk-child:before {content: ;display: block;margin: 0 auto;width: 15%;height: 15%;background-color: #666666;border-radius: 100%;-webkit-animation: sk-circleBounceDelay 1.2s infinite ease-in-out both;animation: sk-circleBounceDelay 1.2s infinite ease-in-out both;}            .sk-circle .sk-circle2 {-webkit-transform: rotate(30deg);-ms-transform: rotate(30deg);transform: rotate(30deg); }            .sk-circle .sk-circle3 {-webkit-transform: rotate(60deg);-ms-transform: rotate(60deg);transform: rotate(60deg); }            .sk-circle .sk-circle4 {-webkit-transform: rotate(90deg);-ms-transform: rotate(90deg);transform: rotate(90deg); }            .sk-circle .sk-circle5 {-webkit-transform: rotate(120deg);-ms-transform: rotate(120deg);transform: rotate(120deg); }            .sk-circle .sk-circle6 {-webkit-transform: rotate(150deg);-ms-tra

Subdomains

Date	Domain	IP
www.shagunproperty.com	2024-04-21	154.19.255.181

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]