Domain > mrantifun.net

More information on this domain is in AlienVault OTX

Reports

http://blog.checkpoint.com/2016/04/15/kovter-ranso...

Files that talk to mrantifun.net

MD5	A/V
7e6185bac1c37b59074f35e2b7108093
32753b03512d3ae84e2b3d71560ad1bd
d408e8a8056bdcf9e1d569cd211f6efc	[Hacktool.CheatEngine] [WS.Reputation.1] [HackTool.CheatEngine!h2lP7QG9eRI] [TrojanDropper.Injector.bhlg]
8e9e3be4a2492ecc85e7b7965c069999	[Artemis!8E9E3BE4A249] [Hacktool.CheatEngine] [Tool.CheatEngine.Win32.645] [HackTool.CheatEngine!h2lP7QG9eRI] [W32/A-c0b40477!Eldorado] [Artemis] [TrojanDropper.Injector.bhlg] [Trojan.SuspectCRC] [Riskware/CheatEngine] [Hacktool.Win32.CheatEngine.aai]
4bc1809e14101a494f0808233899b73b	[Artemis!4BC1809E1410] [Hacktool.CheatEngine] [HackTool.CheatEngine!h2lP7QG9eRI] [WS.Reputation.1] [TrojanDropper.Injector.bhlg] [Hacktool.Win32.CheatEngine.BAF]
768646c048513a0906b7f5df3bc5ed3c
d8a7efb6dc829c3e5e71df48a929b748	[Hacktool.CheatEngine] [WS.Reputation.1] [HackTool.CheatEngine!h2lP7QG9eRI] [Artemis!B845B0013C1E] [TrojanDropper.Injector.bhlg] [Artemis!B845B0013C1E] [Win32.Ramnit] [HackTool.Win32.CheatEngine.aai]
b62d8506a9259d85411d9ac0f7a12b65	[Artemis!B62D8506A925] [Hacktool.CheatEngine] [HackTool.CheatEngine!h2lP7QG9eRI] [Artemis] [TrojanDropper.Injector.bhlg] [HackTool.Win32.CheatEngine.aai]
3be03751f92798680cb9373d8ae2c6e0
9cc9d383f84ac4bba4c0d7be7406a615
1c78885f6b87d0d3e2e28324fc5ed42e	[HackTool.CheatEngine] [Tool.CheatEngine.Win32.1479] [HackTool.CheatEngine!h2lP7QG9eRI] [TROJ_GE.5FD8A202] [TROJ_GE.5FD8A202] [Artemis!46E5DE4AC51A] [TrojanDropper.Injector.bhlg] [Artemis!46E5DE4AC51A] [Trojan.SuspectCRC] [HackTool.Win32.CheatEngine.aai]
01d8298df27c994a96f4a8bf0efee264	[Hacktool.CheatEngine] [W32/CheatEngine.B!Eldorado] [WS.Reputation.1] [HackTool.CheatEngine!h2lP7QG9eRI] [W32/CheatEngine.B!Eldorado] [TrojanDropper.Injector.bhlg] [HackTool.Win32.CheatEngine.aai]
37acb3276710b30cac98beffb1aed97b	[HackTool.CheatEngine] [HackTool.CheatEngine!h2lP7QG9eRI] [Tool.CheatEngine.Win32.819] [BehavesLike.Win32.AdwareBProtect.rc] [TrojanDropper.Injector.bhlg] [TR/Rogue.4415488.1] [Artemis!37ACB3276710] [PE:Malware.RDM.08!5.E[F1]] [Trojan.Rogue]
2a474a373fc87df74f7f3606d6b88039
3003177413c699af43df3fca94a5bc25	[HackTool.CheatEngine] [HackTool.CheatEngine!h2lP7QG9eRI] [SAPE.CheatEngine.e] [BehavesLike.Win32.KeylogArdamax.rc] [TrojanDropper.Injector.bhlg] [Trojan[Packed]/Win32.PolyCrypt]
8c9c354794fa3d65fab1b44a092910f8	[Artemis!8C9C354794FA] [HackTool.CheatEngine] [SAPE.Heur.84BD3] [HackTool.CheatEngine!h2lP7QG9eRI] [BehavesLike.Win32.Virut.rc] [TrojanDropper.Injector.aqkx] [Trojan[Packed]/Win32.PolyCrypt] [HackTool.Win32.CheatEngine.aai]
fd83993f0f7966e870ade225ecfb71c9	[Artemis!FD83993F0F79] [HackTool.CheatEngine] [Tool.CheatEngine.Win32.966] [HackTool.CheatEngine!h2lP7QG9eRI] [BehavesLike.Win32.Virut.rc] [TrojanDropper.Injector.bhlg] [Trojan[Packed]/Win32.PolyCrypt] [HackTool.Win32.CheatEngine.aai]
2810c5b7dc1c16ddf83a3eb8586cf86c	[HackTool.CheatEngine] [SAPE.Heur.84BD3] [Win32.Riskware.Hacktool.D] [HackTool.CheatEngine!h2lP7QG9eRI] [BehavesLike.Win32.Virut.rc] [TrojanDropper.Injector.aqkx] [Trojan[Packed]/Win32.PolyCrypt] [Artemis!2810C5B7DC1C] [HackTool.Win32.CheatEngine.aai]
e929883c0e9b3156f4bbee203f0d0af9	[Artemis!E929883C0E9B] [HackTool.CheatEngine] [HackTool.CheatEngine!h2lP7QG9eRI] [SAPE.CheatEngine.e] [BehavesLike.Win32.Virut.rc] [TrojanDropper.Injector.aqkx] [Trojan[Packed]/Win32.PolyCrypt] [Win32.Riskware.Hacktool.D]
4fa779f7b8801645353025d3a86b169f	[Artemis!4FA779F7B880] [CheatTool.CETTrainer] [Win32.Riskware.Hacktool.D] [Tool.CheatEngine.Win32.926] [BehavesLike.Win32.Ramnit.rc] [TrojanDropper.Injector.aqkx] [Trojan[Packed]/Win32.PolyCrypt] [HackTool.CheatEngine!h2lP7QG9eRI] [HackTool.Win32.CheatEngine.aai]

Whois

Property	Value
NameServer	NS2.MRANTIFUN.NET
Created	2013-10-13 00:00:00
Changed	2015-03-19 00:00:00
Expires	2017-10-13 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2013-11-22	203.124.98.243 (ClassC)
2014-01-29	23.252.116.109 (ClassC)
2014-03-23	107.161.184.9 (ClassC)
2014-06-29	107.161.184.9 (ClassC)
2025-11-03	172.67.176.147 (ClassC)
2026-01-15	104.21.96.100 (ClassC)

HTTP/1.1 200 OKDate: Sun, 27 Aug 2023 14:56:18 GMTContent-Type: text/html; charsetutf-8Transfer-Encoding: chunkedConnection: keep-alivex-frame-options: SAMEORIGINx-frame-options: SAMEORIGINx-content-t

!DOCTYPE html>html idXF langen-US dirLTR	data-apppublic	data-templateforum_list	data-container-key	data-content-key	data-logged-infalse	data-cookie-prefixmaf_	data-csrf1693148178,628c9602b02f17fec206094949b3ee65	classhas-no-js template-forum_list	>head>	meta charsetutf-8 />	meta http-equivX-UA-Compatible contentIEEdge />	meta nameviewport contentwidthdevice-width, initial-scale1, viewport-fitcover>				title>MrAntiFun, PC Video Game Trainers, Cheats and mods/title>	link relmanifest href/webmanifest.php>			meta nametheme-color content#171717 />		meta nameapple-mobile-web-app-title contentMrAntiFun>						meta namedescription contentFree PC Trainers, Cheats, Mods, MrAntiFun, Gaming Cheats, PC Cheats, PC Trainers />		meta propertyog:description contentFree PC Trainers, Cheats, Mods, MrAntiFun, Gaming Cheats, PC Cheats, PC Trainers />		meta propertytwitter:description contentFree PC Trainers, Cheats, Mods, MrAntiFun, Gaming Cheats, PC Cheats, PC Trainers />				link relcanonical hrefhttps://mrantifun.net/ />			link relalternate typeapplication/rss+xml titleRSS feed for MrAntiFun, PC Video Game Trainers, Cheats and mods href/forums/-/index.rss />							meta propertyog:site_name contentMrAntiFun, PC Video Game Trainers, Cheats and mods />							meta propertyog:type contentwebsite />									meta propertyog:title contentMrAntiFun, PC Video Game Trainers, Cheats and mods />		meta propertytwitter:title contentMrAntiFun, PC Video Game Trainers, Cheats and mods />									meta propertyog:url contenthttps://mrantifun.net/ />						link relpreload href/styles/fonts/fa/fa-regular-400.woff2?_v5.15.1 asfont typefont/woff2 crossoriginanonymous />	link relpreload href/styles/fonts/fa/fa-solid-900.woff2?_v5.15.1 asfont typefont/woff2 crossoriginanonymous />link relpreload href/styles/fonts/fa/fa-brands-400.woff2?_v5.15.1 asfont typefont/woff2 crossoriginanonymous />	link relstylesheet href/css.php?csspublic%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less%2Cpublic%3Alite_yt_embed.css&s9&l1&d1673930

Subdomains

Date	Domain	IP
www.mrantifun.net	2025-11-16	104.21.96.100

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]