Help RSS API Feed Maltego Contact                        

Domain > gjesdalbrass.no

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
https://otx.alienvault.com/pulse/566763ec67db8c0fd...    
https://otx.alienvault.com/pulse/5668ab624637f27ed...    
https://otx.alienvault.com/pulse/5668ae0067db8c0fd...    
https://otx.alienvault.com/pulse/566a129f67db8c0fd...    
https://otx.alienvault.com/pulse/566a12f14637f27ed...    
https://otx.alienvault.com/pulse/566b30ea67db8c0fd...    
https://techhelplist.com/spam-list/1000-reference-...    
https://techhelplist.com/spam-list/1002-payment-re...    
https://techhelplist.com/spam-list/1003-invoice-ou...    
https://techhelplist.com/spam-list/996-invoice-fro...    
https://techhelplist.com/spam-list/997-your-order-...    
https://techhelplist.com/spam-list/999-invoice-fro...    

Files that talk to gjesdalbrass.no
MD5A/V
8b6d930fc5b30fac76374aab4efc7915
f2b2e535f8def6f79268ba36036d3bbc[BehavesLike.JS.Exploit.lv] [Script.Trojan-Downloader.JS.C]
0a4cf91db58ae56939ecfb28b2c481e4[HW32.Packed.EA96] [Trojan.Downloader.JSMM] [Artemis!0A4CF91DB58A] [Ransom.FileCryptor] [TROJ_FRS.0NA003L715] [Trojan.Win32.Yakes.nqvp] [Trojan.AVKill.59551] [TROJ_FRS.0NA003L715] [Artemis] [Ransom:Win32/Tescrypt.A] [Trojan.Win32.Injector.CNVR] [Win32.Trojan.Bp-ransomware.Ejqz] [Trojan.Win32.Injector] [Inject3.SUP]
de6983688dabf264e8a50a04eecab9d7
53e4536692c3224c2ed54f3a8d56d65d[Trojan.JS.Downloader.CHD] [Trojan.JS.Downloader.CHD] [Trojan.JS.Downloader.CHD] [Trojan.RUUX-3] [JS/Kryptik.AYJ] [TROJ_FRS.0NA003L515] [Trojan-Downloader.JS.Cryptoload.an] [Trojan.JS.Downloader.CHD] [Trojan.JS.Downloader.CHD] [JS.DownLoader.570] [TROJ_FRS.0NA003L515] [BehavesLike.JS.Exploit.lv] [Troj/JSDown-BG] [Trojan.JS.Downloader.CHD] [TrojanDownloader:JS/Swabfex.A] [JS/Downloader] [Trojan.JS.Crypt] [Trojan.JS.Downloader.CHD] [Win32/Trojan.Downloader.27d]
ea2491377f9c0dc669002101e2f76167[Downloader.YOLH] [JS/Kryptik.AYJ] [TROJ_FRS.0NA003L715] [Script.Trojan-Downloader.JS.C] [Trojan-Downloader.JS.Cryptoload.an] [Js.Trojan-downloader.Cryptoload.Ajuy] [JS.DownLoader.570] [TROJ_FRS.0NA003L715] [BehavesLike.JS.Redirect.lv] [Troj/JSDown-BG] [TrojanDownloader:JS/Swabfex.A] [JS/Downloader] [Trojan.JS.Crypt] [Win32/Trojan.Downloader.27d]
06c9fde6b9db4ad144540c64c13f7025[HW32.Packed.49CA] [Ransom.FileCryptor] [Trojan.Win32.Yakes.nqvp] [Trojan.AVKill.59551] [Trojan.Win32.Yakes.nqvp]
cbfd051fe944812c56c0647c88f0de3d[HW32.Packed.E14B]
d62c66750363a910542c39b2d726c656[Ransom.CryptoWall] [BehavesLike.Win32.PackedAP.fh]
07cc01a79004651394e6dad448d70b8d
ee7736125913c2ee3e8c80d209d9690c[BehavesLike.JS.ExploitBlacole.lv]
972992a13ebc4ead38aef2a76cf1cd07[BehavesLike.JS.ExploitBlacole.lv]
0ccfe4e2603f5c7be0042c2776eef897[BehavesLike.JS.ExploitBlacole.lv]
347689aeb3cc79fe1ca4443a0b851469[BehavesLike.JS.ExploitBlacole.lv]
76e4abc87063a7085c0ceb67a6476d69
e289b447d2ed491939e9aaa244363ea1[HW32.Packed.E372]
47657afdadde62617decacf7674c4e5f
7924e4f1ceffad7fb00ab73bb812ee97
ebedf60a71e1e6a6899484307623f013[BehavesLike.JS.ExploitBlacole.lv]
35bc2e2c800e2228d0068eb39010259c

DNS Resolutions
DateIP Address
2014-03-1983.143.81.14 (ClassC)
2015-12-10217.170.198.100 (ClassC)
2016-06-30178.79.188.168 (ClassC)
2018-07-1035.197.194.130 (ClassC)
2024-12-2435.195.98.220 (ClassC)

Port 80

Subdomains
DateDomainIP
www.gjesdalbrass.no2024-11-1535.195.98.220
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information