Domain > kubusse.ru

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

Files that talk to kubusse.ru

MD5	A/V
c66f749b2d6ac0cc6d49b2cea366effd	[Trojan.Dropper.UXL] [W32/Risk.CJMZ-1565] [Worm/Verst.A.59] [Win32/Scar.OA] [Worm.Verst.A] [Trojan.Scar-574] [Trojan.MulDrop1.53426] [W32/PolyCrypt.AE!worm] [W32/MalwareF.TTMA] [Win32/Heur] [Packed.Win32.PolyCrypt] [Packed.Win32.PolyCrypt.ae] [Trojan.Dropper] [W32/Autorun.worm.bcf] [Worm*Win32/Verst.A] [Mal/EncPk-MX] [W32.Pilleuz] [TROJ_SCAR.HW] [Worm.Autorun.01133] [W32.Dannerio.Worm] [Trojan/W32.Scar.648704.D] [Trojan.Scar.Win32.40887] [Trojan/Scar.dhwl] [Trojan.Win32.Scar.bvneq] [AutoRun.CPIG] [Trojan.Scar!4RolewxJJP8] [Trojan.Win32.Scar.648704] [UnclassifiedMalware] [Heuristic.LooksLike.Win32.Suspicious.F] [Trojan/Scar.fvj] [Win32.Troj.Scar.(kcloud)] [Worm:Win32/Verst.A]
61609d3b70b678b9530cce3ef7f0e7d5	[Trojan.MulDrop1.47363] [Win32/Kryptik.NYH] [W32/Kryptik.ANS!tr] [Win32/Heur] [Trojan.Win32.Ransom] [Worm.Vorst] [Worm*Win32/Verst.A] [Mal/EncPk-MX] [WORM_VERST.SM] [BScope.Malware-Cryptor.Hlux]
1817d132ae3da088c90aba65a16d7fd5	[Win32/Tanatos.N] [Virus*Win32/Sality.H] [W32/Autorun.worm.bcf] [W32/Sality.Z]
1aa9fdfc1ef3f15447be83144dbba584	[Worm*Win32/Verst.A] [Win32/Sality] [W32.Sality] [W32/Autorun.worm.bcf] [W32/Sality.s]
3d5e46300d7391e0fda235b3e28a63b0	[Virus.Win32.Ramnit.A] [Win32.Worm.Rimecud.AZ] [RmnDrpWin32RmnDrp] [W32/Ramnit.E] [W32/Ramnit.C] [Win32/Ramnit.C] [W32.Ramnit.BA] [W32.Ramnit-1] [Win32.HLLW.Autoruner.33675] [Win32/Zbot.F] [Win32.Worm.Rimecud] [Virus.Win32.Nimnul.a] [Trojan.Dropper] [W32/Autorun.worm.bcf] [Virus*Win32/Ramnit.J] [Win32.Mgr.a] [W32/Ramnit-A] [W32.Ramnit.B!inf] [PE_RAMNIT.DEN] [Virus.Win32.Nimnul.b]
ad2ccb7d07729e78266415f9a1b9dd16	[Worm/Verst.A.26] [Win32/SillyAutorun.ENU] [Worm.Verst.A] [Worm.Autorun-3977] [Trojan.MulDrop1.53426] [Win32/Kryptik.UA] [W32/Kryptik.ANS!tr] [Win32/Heur] [Virus.Win32.Heur] [P2P-Worm.Win32.Palevo.erfv] [Trojan.Dropper] [W32/Autorun.worm.bcf] [Worm*Win32/Verst.A] [Mal/EncPk-MX] [W32.SillyFDC] [WORM_VERST.SM] [Worm.Autorun.01133]
7a8e3a9ebf365caf568a5383b6e3e861	[Trojan.MulDrop1.47363] [Win32/Kryptik.NYH] [W32/Kryptik.ANS!tr] [Win32/Heur] [Trojan.Win32.Ransom] [Worm.Vorst] [Worm*Win32/Verst.A] [Mal/EncPk-MX] [WORM_VERST.SM] [BScope.Malware-Cryptor.Hlux]
27830c13968be6caefd2e75c9095fff6	[Win32/Scar.OA] [Worm.Verst.A] [Trojan.Scar-574] [Trojan.MulDrop1.53426] [W32/Kryptik.ANS!tr] [Win32/Heur] [Win32.Worm.Rimecud] [Packed.Win32.PolyCrypt.ae] [Trojan.Dropper] [W32/Autorun.worm.bcf] [Worm*Win32/Verst.A] [Worm.Win32.Verst.a] [Mal/EncPk-MX] [W32.Pilleuz] [WORM_VERST.SM] [Worm.Autorun.01133]
07bcc42508b3d95e4549bb1617c06a50	[Trojan.Dropper.UXL] [Win32/Scar.OA] [Worm.Verst.A] [Trojan.Scar-574] [Trojan.MulDrop1.53426] [W32/Kryptik.ANS!tr] [Win32/Heur] [Win32.Worm.Rimecud] [Packed.Win32.PolyCrypt.ae] [W32/Autorun.worm.bcf] [Worm*Win32/Verst.A] [Mal/EncPk-MX] [W32.Pilleuz] [WORM_VERST.SM] [Worm.Autorun.01133]
0079ee50f8d1240aa2ac7306ecff563b	[Trojan.Scar.Dhwl] [Win32/Scar.OA] [Worm.Verst.A] [Trojan.Scar-574] [Trojan.MulDrop1.53426] [W32/Kryptik.ANS!tr] [Win32/Heur] [Win32.Worm.Rimecud] [Packed.Win32.PolyCrypt.ae] [Trojan.Dropper] [W32/Autorun.worm.bcf] [Worm*Win32/Verst.A] [Worm.Win32.Verst.a] [Mal/EncPk-MX] [W32.Pilleuz] [WORM_VERST.SM] [Worm.Autorun.01133]
334696b5abdcfe6ff4e9bfa33388506d	[Trojan.Scar.Czjh] [BackDoor.Pushnik.9] [W32/Kryptik.ANS!tr] [Win32/Heur] [Trojan.Win32.Ransom] [Worm*Win32/Verst] [Mal/EncPk-MX] [WORM_VERST.SM] [BScope.Malware-Cryptor.Hlux]
ba028705ce114c4f7e8c179e7dfda802	[Worm*Win32/Verst.A] [Win32/Sality] [W32/Sality.S] [W32.Sality] [W32/Autorun.worm.bcf]
b5c01ffd82cf87cdc5e78a9291890bdb
01c2dc978ebedb5f6b50647492faa2f0	[Trojan.Dropper.UXL] [W32/Risk.CJMZ-1565] [Win32/Scar.OA] [Worm.Verst.A] [Trojan.Scar-574] [Trojan.MulDrop1.53426] [W32/Kryptik.ANS!tr] [W32/MalwareF.TTMA] [Win32/Heur] [Win32.Worm.Rimecud] [Packed.Win32.PolyCrypt.ae] [Trojan.Dropper] [W32/Autorun.worm.bcf] [Worm*Win32/Verst.A] [Worm.Win32.Verst.a] [Mal/EncPk-MX] [W32.Pilleuz] [TROJ_SCAR.HW] [Worm.Autorun.01133]
0878aef80c38edd267cf973ddf30c53b

DNS Resolutions

Date	IP Address
2013-09-09	31.170.179.179 (ClassC)
2013-11-09	31.170.178.179 (ClassC)
2014-02-09	109.70.26.36 (ClassC)
2014-03-02	109.70.26.36 (ClassC)
2014-03-02	194.85.61.78 (ClassC)
2018-10-26	195.22.26.248 (ClassC)
2019-05-24	195.157.15.100 (ClassC)
2019-08-16	173.231.184.56 (ClassC)
2019-08-30	173.231.184.54 (ClassC)
2019-09-07	173.231.184.52 (ClassC)
2019-09-25	173.231.184.62 (ClassC)
2019-11-09	173.231.184.55 (ClassC)
2019-12-15	173.231.184.57 (ClassC)
2020-01-16	173.231.184.123 (ClassC)
2020-01-21	173.231.184.125 (ClassC)
2020-01-24	173.231.184.58 (ClassC)
2020-03-06	173.231.184.59 (ClassC)
2020-03-15	173.231.184.104 (ClassC)
2020-04-09	173.231.184.117 (ClassC)
2020-04-26	173.231.189.24 (ClassC)
2021-02-08	173.231.189.26 (ClassC)
2023-07-20	173.231.184.124 (ClassC)
2024-05-13	34.67.9.172 (ClassC)
2024-05-27	3.237.86.197 (ClassC)
2024-09-20	31.177.80.32 (ClassC)
2024-09-27	31.177.76.32 (ClassC)
2025-03-02	44.221.84.105 (ClassC)
2025-03-10	44.200.87.10 (ClassC)
2026-01-27	3.229.117.57 (ClassC)

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]