Help RSS API Feed Maltego Contact

Domain > gotdns.org

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to gotdns.org

MD5	A/V
64d222ec743c6ca911d588b0a7750e4d	[Trojan.FCB1625554D07791] [Trojan.Dropper.VB.1] [Win32/TrojanDropper.Tiny.NAP] [Backdoor.Bifrose] [W32/Dropper.DS!tr] [Trojan.Dropper.VB.1] [Backdoor*Win32/Poison.B] [Trojan.Dropper.VB.1] [W32/Risk.LIYW-0874] [W32/Dropper.AGPN] [Virus.Win32.Bifrose] [Trojan.Dropper.VB.1] [Dropper.Aholic.Win32.3] [Trojan-Dropper.Win32.Dorifel.atwh] [Troj/Mdrop-CEC] [TrojanDropper.Aholic.f] [Trojan-Dropper.Win32.SlaveBinder] [Trojan-Dropper.Aholic.lbuee] [Trojan.Dropper.VB.1] [Trojan.Dropper.VB.1] [Trojan.Starter.1037] [Trojan.Dropper.VB.1]
c6df3604a57f03c28098039cb6bc6779	[Win32/Ramnit.DW] [Trojan.Win32.Enigma.AAA] [Win32/Heur]
c462386a45d51fbf8433ab6a92e27348	[AIT:Trojan.Autoit.CCI] [Trojan.Strictor.D105CF] [VirTool:Win32/Obfuscator.AKT] [Trojan.Win32.Injector.OV]
3ac9aa0d4bedd8a97d338716659787ed	[TrojanBanker.ChePro.gc] [Artemis!3AC9AA0D4BED] [Trojan.Banker.OTL] [Trojan.Win32.ChePro.dsokxg] [W32/Trojan.EIUS-4615] [Win32/TrojanDownloader.Banload.VUF] [Trojan-Banker.Win32.ChePro.mjik] [Trojan.PWS.ChePro!] [Trojan.Win32.A.ChePro.1279488[h]] [Win32.Trojan-banker.Chepro.Lnev] [Trojan.Bankfraud.2682] [BehavesLike.Win32.Dropper.tc] [Trojan[Banker]/Win32.ChePro] [Trojan:Win32/Bagsu!rfn] [Trojan/Win32.Downloader] [Win32/Ramnit.DW] [Trojan.Win32.Banload.VUF] [Trojan.Win32.Enigma] [W32/Banload.VUF!tr] [Win32/Heur]
1377C34CE8BD08580923CE33E981A4E8
CB9AB17398BAA85120799B9C516AA156
411E79F01EBE64C86BD4A16EEA757D91
33f30ffd395f86d73479052eb5efaaa4
926ba8ce5e2eb7e83fa29c16acc78e5d
a193d7ae1a0f2c4b2314c24705e776a3	[Exploit.ComObj.CVE-2012-0158.hzuf] [HEUR_OLEXP.A] [Troj/20120158-S] [DOC/Ratbolo] [MSWord/Toolbar.A!exploit]
042420d47732e3955d5808b2da1b6e5e
a721e33a73f18e26e1913ac0265a759a

DNS Resolutions

Date	IP Address
2009-09-10	70.32.73.147 (ClassC)
2009-09-10	74.208.149.223 (ClassC)
2009-09-10	79.143.129.3 (ClassC)
2010-06-27	80.91.176.172 (ClassC)
2012-04-18	86.35.104.174 (ClassC)
2013-06-06	37.59.151.254 (ClassC)
2013-06-15	85.214.64.153 (ClassC)
2013-09-27	204.13.248.119 (ClassC)
2013-09-28	62.113.218.51 (ClassC)
2026-01-16	132.226.162.56 (ClassC)

Subdomains

Date	Domain	IP
andreakre2.gotdns.org	2025-03-26	37.49.226.99
homerlindo2.gotdns.org	2015-06-03	177.55.98.3
casa.gotdns.org	2024-10-18	141.94.68.113
waldorf-cloud.gotdns.org	2024-09-06	84.144.153.222
shh.gotdns.org	2024-07-06	84.144.152.4
erjo2025rimini.gotdns.org	2025-03-17	51.195.216.103
waldorf-ol.gotdns.org	2024-09-03	84.144.153.222
phil-gov.gotdns.org	2015-02-02	74.208.164.166
phil-army.gotdns.org	2015-02-02	108.175.9.189

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information