Help RSS API Feed Maltego Contact                        

Domain > default.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to default.com
MD5A/V
315325f544912a68464bf38e3edf6371[HW32.CDB.9e5e] [Backdoor/W32.Hlux.829456.H] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux!aauIqdu764w] [Trojan.FakeAV] [Kryptik.CDQY] [Backdoor.Win32.Hlux.dqyy] [Win32.Backdoor.Hlux.Lhdb] [UnclassifiedMalware] [Trojan.Packed.26581] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Backdoor.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aZvR] [Win32/Trojan.337]

Whois
PropertyValue
Email 2383175@PRIVACY-LINK.COM
NameServer NS2.VENTURE.COM
Created 1998-05-06 04:00:00
Changed 2019-03-12 13:34:09
Registrar Uniregistrar Corp

DNS Resolutions
DateIP Address
2014-06-1823.23.130.80 (ClassC)
2014-07-2654.225.221.145 (ClassC)
2014-12-1354.204.1.240 (ClassC)
2015-03-1454.225.167.121 (ClassC)
2015-03-1454.243.32.25 (ClassC)
2015-06-0254.197.248.1 (ClassC)
2019-03-2754.70.47.137 (ClassC)
2019-04-1554.69.135.78 (ClassC)
2019-05-1452.27.218.17 (ClassC)
2019-06-0252.32.40.141 (ClassC)
2019-08-0654.187.251.197 (ClassC)
2019-10-1134.208.174.217 (ClassC)
2020-05-0354.191.245.127 (ClassC)
2021-06-0335.167.157.238 (ClassC)
2025-06-3075.2.70.75 (ClassC)
2025-08-2499.83.190.102 (ClassC)
2026-01-12198.202.211.1 (ClassC)

Port 80

Subdomains
DateDomainIP
import-cdn.default.com2024-11-14204.246.191.101
gasco.default.com2015-03-0554.225.167.121
forms.default.com2024-06-2476.76.21.9
nucleus.default.com2024-07-2254.241.193.10
nucleus-dev.default.com2025-08-2252.53.112.218
www.default.com2014-08-2554.243.198.214
nullmx.default.com2014-06-18209.181.247.105
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information