Domain > stun.callwithus.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://otx.alienvault.com/pulse/55d2323d4637f2170...

https://pastebin.com/YTN2E70f

Files that talk to stun.callwithus.com

MD5	A/V
9954a623e3c63addc81df3560ab102dd	[Upatre.FE] [HB_Arkam] [Troj/Bredo-AJR] [Upatre-FAAJ!0FD2F7DDD582] [Trojan.Upatre] [Downloader.Upatre] [TROJ_UPATRE.JSV] [Trojan-Downloader.Win32.Upatre.efc] [Trojan-Downloader:W32/Upatre.J] [Trojan.DownLoader11.48965] [W32/Trojan.EZHX-8770] [TR/Crypt.ZPACK.111967] [TrojanDownloader:Win32/Upatre] [BScope.Malware-Cryptor.Mystig] [Trojan.Win32.Waski.BF] [Win32/TrojanDownloader.Waski.F] [Trojan-Downloader.Win32.Upatre] [Crypt3.BJWS]
6b9a7292f17b9f4e11e38019e4b27fee	[Trojan-FFBT!6B9A7292F17B] [Trojan.Email.FakeDoc] [W32/Trojan3.LNQ] [Downloader.Upatre] [TROJ_DLOADR.YYMD] [Trojan-Downloader.Win32.Upatre.clx] [Troj/Mdrop-GHU] [Trojan.Upatre.100] [BehavesLike.Win32.Downloader.mm] [W32/Trojan.JLIS-2341] [TR/Visucius.82] [TrojanDownloader:Win32/Upatre.AF] [Trojan.Win32.Crypt] [W32/Kryptik.CNXO!tr] [Trojan.Win32.Upatre.cAF] [Artemis!6B9A7292F17B] [Luhe.Fiha.A]
fd0f57fd1f93c13b7bd63f811ac7939e	[Downloader-FSH!FD0F57FD1F93] [Upatre.FH] [BehavesLike.Win32.PWSZbot.mm] [Trojan.FakePDF.DL] [Downloader.Upatre] [TROJ_UPATRE.YYQY] [Trojan.Win32.Staser.arjy] [Trojan.Upatre.117] [Troj/DwnLdr-MAY] [TrojanDownloader:Win32/Upatre.AN] [Trj/CI.A] [Win32/TrojanDownloader.Waski.A] [Trojan-Downloader.Win32.Waski] [Trojan/W32.Staser.23040.C] [Win32/Upatre.eNIAbP] [Trojan/Win32.Staser] [Trojan/Win32.Upatre] [Win32.Trojan.Staser.Eddv] [Trojan.Win32.Staser] [W32/Waski.A!tr.dldr] [Trojan.Win32.Waski.bA]
c6315a09e06e2ba775e5be0979d23755	[HW32.CDB.423b] [Backdoor.Bot.ED] [W32/Androm.AU] [Infostealer.Dyranges] [Backdoor.Win32.Androm.eovv] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Trojan.DownLoader11.21942] [Win32.Malware!Drop] [TR/Crypt.ZPACK.82808] [Artemis!C6315A09E06E] [Trojan[Backdoor]/Win32.Androm] [Win32.Hack.Androm.eo.(kcloud)] [PWS:Win32/Dyzap] [Trojan/Win32.Battdil] [W32/Androm.NKAF-2188] [Trj/CI.A] [Win32/Battdil.B] [Win32.Backdoor.Androm.Swub] [Backdoor.Win32.Androm] [W32/Androm.EOVV!tr.bdr] [SHeur4.BYMK]
7e3e28320d209a586917668e3b8eac40	[HW32.Paked.7B4E] [Backdoor/W32.Androm.305152] [Backdoor.Androm.rw4] [Trojan.Malware.Packer] [Backdoor.Androm!pgYmpCS9JEM] [W32/Trojan.WZXE-5588] [Infostealer.Dyranges] [Win32/Tnega.AdELHSD] [TROJ_CROWTI.SMN2] [Backdoor.Win32.Androm.epjv] [Trojan.Win32.Androm.ddmbrw] [Backdoor.Win32.Androm.305152] [Win32.Backdoor.Androm.Ajcg] [UnclassifiedMalware] [Trojan.Dyre.1] [Backdoor.Androm.Win32.9955] [TROJ_SPNV.01GO14] [BehavesLike.Win32.PWSZbot.dh] [W32/Trojan3.JOI] [TR/Crypt.ZPACK.88506] [Trojan[Backdoor]/Win32.Androm] [Win32.Hack.Androm.ep.(kcloud)] [PWS:Win32/Dyzap.D] [Trojan/Win32.Zbot] [Backdoor.Androm] [Backdoor.Win32.Androm.AvGl] [Win32/Battdil.B] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Trojan.NaviPromo] [W32/Androm.EPJV!tr.bdr] [SHeur4.BYXA]
f69ed9cc4f56f194d9761ab7fafe097f	[W32/Trojan.ZYBF-0104] [TR/Rogue.15217.aia] [Win32/Tnega.FYSEdfC] [Trojan-Downloader.Win32.Upatre] [Win32/TrojanDownloader.Waski.F] [W32/Upatre.FT!tr.dldr] [W32/Trojan3.NYH] [Trojan-Downloader.Win32.Upatre.fbq] [Trojan.Downloader.UPT] [Upatre-FAAR!F69ED9CC4F56] [Mal/EncPk-ANE] [Downloader.Upatre] [TROJ_UP.F294E86B] [BScope.Malware-Cryptor.Hlux]
b2b3d89fee8afb50c332f06cd43c3b6c	[Downloader-FSH!B2B3D89FEE8A] [BehavesLike.Win32.Downloader.mm] [Troj.Spy.W32.Zbot]
76d03e0bd49b4f5868efd98295fa28bb
4d0d3fe05c7bfa72ed176c4ae037a989	[Downloader-FSH!78EA1F562A9C] [Trojan.Downloader.ED] [Infostealer.Dyranges] [Upatre.EP] [Zip.Suspect.WinDoubleExtension-zippwd-2] [Troj/HkMain-AZ] [TR/ATRAPS.A.1882] [TrojanDownloader:Win32/Upatre.AA] [Trj/CI.A] [Trojan-Downloader.Win32.Waski] [W32/Kryptik.CMRK!tr] [Trojan.Win32.Waski.bA]
f187cf5e3423b39426ccdfc0ee937ad9	[Win32/TrojanDownloader.Waski.A] [Artemis!0ECE44BD85D8] [Trojan.Upatre] [Trojan.Upatre.100] [Troj/Mdrop-GGO] [Trojan-Spy.Zbot] [Trojan.Win32.Waski.bA]
e07a4c40a21933a5b3adab1bcbbc5b98	[Upatre-FAAA!E07A4C40A219] [Trojan.Downloader.FPD] [TROJ_UPATRE.SMBG] [Trojan-Downloader.Win32.Upatre.cjm] [Mal/Zbot-QL] [BehavesLike.Win32.Downloader.lm] [TR/ATRAPS.A.1964] [Trojan[Downloader]/Win32.Upatre] [W32/Upatre.BTC!tr] [Crypt3.AYSV] [Win32/Trojan.45a]
8e4a1d8dbcfa2bd3c9e238ba50f9e5a6	[Suspect-BZ!8E4A1D8DBCFA] [Trojan.Downloader.ED] [Trojan.Win32.Upatre.dhbruu] [W32/Trojan3.LOK] [Win32/Tnega.ADTaHbC] [TROJ_GE.4988F3B2] [Trojan-Downloader.Win32.Upatre.csy] [TrojWare.Win32.UMal.~A] [Trojan.Upatre.100] [Win32.Malware!Drop] [W32/Trojan.OLMN-6449] [TR/Rogue.pdau] [Trojan[Downloader]/Win32.Upatre] [TrojanDownloader:Win32/Upatre] [Win32.Trojan-downloader.Upatre.Ecko] [Trojan-Downloader.Win32.Upatre] [W32/Upatre.AJNL!tr] [Crypt3.AZLU] [Trojan.Win32.Upatre.aExk] [Win32/Trojan.0ff]
512b2abdc24e0529959a756cc5ce1744	[TrojanDownloader.Upatre.r5] [Upatre-FAAJ!A0FD20F5B72A] [Trojan.Downloader.Upatre] [Win32.Malware!Drop] [Trojan.Win32.Upatre.djybgt] [W32/Trojan3.MQM] [Downloader.Upatre] [Upatre.FN] [Trojan-Downloader.Win32.Upatre.eei] [UnclassifiedMalware] [Trojan-Downloader:W32/Upatre.J] [Trojan.DownLoader11.49420] [TROJ_UPATRE.MGH] [W32/Trojan.NYLK-1377] [TR/Crypt.ZPACK.107154] [Trojan[Downloader]/Win32.Upatre] [TrojanDownloader:Win32/Upatre] [BScope.Malware-Cryptor.Mystig] [Win32/TrojanDownloader.Waski.F] [Trojan-Downloader.Win32.Upatre] [W32/UPATRE.MGH!tr] [Trojan.Win32.Upatre.As] [Trj/CI.A] [Trojan.Win32.Upatre.Alcs]
b9e2f5b751dafe7ce687a6ac0a5e2780	[Upatre.FN] [HB_Arkam] [Possible_Arkam] [Upatre-FAAJ!BC3D9392E0A9]
ac6b71abcb71f997af10d48897742e31	[BehavesLike.Win32.Packed.gh]
23e32d6a9a881754f1260899cb07ac55	[Suspicious.Cloud.5] [TrojanDownloader.Hyteod.rw4] [Trojan.Downloader] [Win32.Malware!Drop] [Trojan/Downloader.Waski.f] [Trojan.DL.Hyteod!dh8T/Rm43+w] [W32/Trojan3.JLQ] [Downloader.Upatre] [Upatre.DT] [Win32/Upatre.XJAfRbD] [TROJ_UPATRE.AAW] [Trojan-Downloader.Win32.Hyteod.pqr] [Trojan.Win32.DownLoad3.dcnwyg] [Troj/Upatre-DC] [Backdoor.Win32.Androm.EQ] [Trojan.DownLoad3.33795] [W32/Trojan.EPGJ-1106] [TR/Visucius.121] [Trojan[Downloader]/Win32.Hyteod] [Win32.TrojDownloader.Hyteod.p.(kcloud)] [TrojanDownloader:Win32/Upatre.AA] [Trojan/Win32.Upatre] [TrojanDownloader.Hyteod] [Trj/WLT.A] [Win32/TrojanDownloader.Waski.F] [Win32.Trojan-downloader.Hyteod.Hsit] [Trojan.VBInject] [W32/Tfr.AAW!tr]
2432d168a00ca1193ea4f630662c6090
184943a6c6c5aa81019f8e372acd91d8	[Suspicious.Cloud.5]
bd3fd9f55900e2c63d5f4977053e8f68	[Spyware.Dyre] [Trojan.Win32.Staser.dgzeag] [Infostealer.Dyranges] [Battdil.J] [TSPY_DYZAP.D] [Trojan.Win32.Staser.aoug] [Trojan.Battdil!] [Trojan.DownLoader11.37802] [Trojan.Staser.Win32.2315] [W32/Trojan.WLZD-3811] [TR/Rogue.450560.12] [Trojan/Win32.Staser] [PWS:Win32/Dyzap] [Win32/Battdil.F] [Win32.Trojan.Staser.Pgmx] [Trojan.Win32.Staser] [W32/Kryptik.CNSJ!tr] [Trojan.Win32.Staser.AfI] [Win32/Trojan.ee5] [Trojan/W32.Staser.450560] [UnclassifiedMalware] [Trojan/Win32.Zbot] [Trojan.Staser]
4ffb604ff135a1e069cd3bc0532da0a9

Whois

Property	Value
Email	proxy1470440@1and1-private-registration.com
NameServer	NS2.CALLWITHUS.COM
Created	2006-10-07 00:00:00
Changed	2014-10-08 00:00:00
Expires	2015-10-07 00:00:00
Registrar	1 & 1 INTERNET AG

DNS Resolutions

Date	IP Address
2013-05-22	198.27.81.168 (ClassC)
2021-01-16	192.95.17.62 (ClassC)
2025-06-03	158.69.57.20 (ClassC)

Subdomains

Date	Domain	IP
sip1.callwithus.com	2025-05-08	192.95.16.18
NS2.CALLWITHUS.COM	2025-05-09	158.69.57.20
api.callwithus.com	2025-05-19	167.114.170.186
lrn.callwithus.com	2025-05-19	167.114.170.186
stun.callwithus.com	2013-05-22	198.27.81.168
sip.callwithus.com	2025-05-08	192.95.16.18
www.callwithus.com	2025-05-25	167.114.170.186

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]