Domain > vampirefreaks.com

More information on this domain is in AlienVault OTX

Files that talk to vampirefreaks.com

MD5	A/V
d2f2c9e7b5d32c5114a2f8511d9efcc2
b34430b8e494c41f86c5aa47b002a212	[Crypt2.AZDS]
e9a5bc168334d1c8371468d3e033ad32
57be65340d0a4336f525d108862ccf50
3b54013dbac240d454b929a3745a46e4	[Artemis!3B54013DBAC2] [WS.Reputation.1] [HB_Pushdo-1] [Trojan.Win32.Jorik.Cutwail.ppt] [UnclassifiedMalware] [BackDoor.Bulknet.958] [W32/Pushdo.YOY!tr] [SHeur4.BMTZ]
3be8faf7b111dadde0d8e17b428125b0	[Backdoor/W32.Androm.39936.C] [Trojan.Androm.vsg.cw4] [Trojan.Inject] [Trojan/Kryptik.bdbi] [Trojan.Win32.Androm.btkkib] [WS.Reputation.1] [TROJ_CUTWAIL.PQP] [Backdoor.Win32.Androm.vsg] [Backdoor.Androm!mmztmFLZ69E] [UnclassifiedMalware] [BackDoor.Bulknet.958] [Win32.HeurC.KVMH004.a.(kcloud)] [TrojanDownloader:Win32/Cutwail] [Client-SMTP.39936] [W32/Backdoor.DIPS-1259] [Backdoor.Androm] [Virus.Win32.Cryptor] [W32/Androm.VSG!tr.bdr] [Win32/Cryptor] [W32/Palevo.GEZ.worm]
e5b85688fcbb1c799ee2e233fb531297	[TrojanDownloader.Cutwail] [RDN/Downloader.a!mv] [Trojan.Inject.RRE] [Riskware] [W32.Pilleuz] [Win32/Cutwail.CGbKVWC] [BKDR_PUSHDO.FT] [Backdoor.Win32.Pushdo.qnv] [Backdoor.Pushdo!XnUVfC93BRo] [UnclassifiedMalware] [BackDoor.Bulknet.958] [BDS/Pushdo.qnv] [Backdoor/Pushdo.aew] [Win32.Hack.Pushdo.q.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [W32/Backdoor.YDLC-0133] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.YOY!tr]
7e265cfaa3a92f9b07c518dcbe577262	[Crypt_s.BOF] [TrojanDownloader*Win32/Cutwail.BS]
622bf7ba2317ae03b0682a650bac03d8	[TrojanDownloader.Cutwail] [Cutwail-FBPN!622BF7BA2317] [W32.Pilleuz] [Pushdo.I] [TROJ_SPNR.1ADR13] [Backdoor.Win32.Pushdo.pyz] [Backdoor.Pushdo!kokJ8DxObyw] [Heur.Suspicious] [BackDoor.Bulknet.893] [Win32.Hack.Pushdo.p.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor.Win32.U.Pushdo.41472] [Backdoor/Win32.Pushdo] [W32/Backdoor.PJEO-2224] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.PYZ!tr.bdr] [SHeur4.BGUF] [Trj/OCJ.D]
8a81337b6ec2ac603454237cba5ae8e4	[Cutwail-FCJX!8A81337B6EC2]
9377d78f1f97104f41a6b42b195c8e51	[SHeur4.BLZU]
c12a0f14324014f4c4d5d070ddc33d33
ea5a2c72517c76e822324540ec9f1f7a	[TrojanDownloader.Cutwail] [Trojan/Wigon.ph] [Riskware] [Trojan.Win32.XPACK.bgffjt] [W32.Pilleuz] [TROJ_WIGON.AW] [UnclassifiedMalware] [BackDoor.Bulknet.739] [Heuristic.BehavesLike.Win32.Suspicious.D] [Troj/WIGON-A] [TrojanDownloader:Win32/Cutwail.BW] [W32/Trojan.JDWF-4093] [Dropper/Win32.Dorifel] [Malware.Pilleuz!rem] [Win32/Wigon.PH] [Trojan.SuspectCRC] [W32/Wigon.PH] [SHeur4.AZVH]
a423bbddf78450753f1a239711408b91	[Crypt_c.ABJD] [TrojanDownloader*Win32/Cutwail.BS]
526d28005ca16009f4c37f6319d6bfa3	[Trojan/W32.Jorik.46592.DO] [Trojan] [Trojan/Kryptik.bfdk] [WS.Reputation.1] [Backdoor.Win32.Pushdo.qme] [Backdoor.Pushdo!ksoXPDwu2Y4] [UnclassifiedMalware] [BackDoor.Bulknet.958] [VirTool:Win32/Obfuscator.AHU] [Backdoor/Win32.Pushdo] [Trojan.Jorik.Cutwail] [Backdoor.Win32.Pushdo] [W32/Pushdo.YOY!tr] [SHeur4.BMTZ] [Trj/CI.A]
63e2d975b940af1a4ae7c80f7f6f7052	[TrojanDownloader*Win32/Cutwail.BS]
e4fac37c735dcccfffd80373bcf31985
0c699bf8815137404fc43f6e56761ac8	[Trojan.Dropper.VQH] [TrojanDownloader.Cutwail] [Trojan-FBGJ!0C699BF88151] [Trojan] [Trojan/Wigon.ph] [Malware] [Mal_DLDER] [Trojan.Downloader.Small-3221] [UnclassifiedMalware] [BackDoor.Bulknet.893] [TrojanDownloader:Win32/Cutwail.BS] [Virus.Win32.Heur.c] [BScope.Trojan.Cutwail.4512] [Win32/Wigon.PH] [W32/Pushdo.B!tr.bdr]
34a0d34007c7e9225daefb515d9ba893	[Crypt_s.BOF]
2f80660b47db546c6907edd95868b901	[Backdoor.Pushdo] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Win32.Hack.Pushdo.q.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo]

Whois

Property	Value
NameServer	WILL.NS.CLOUDFLARE.COM
Created	2000-02-06 00:00:00
Changed	2015-08-09 00:00:00
Expires	2021-02-06 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2013-08-27	38.106.205.131 (ClassC)
2014-02-24	198.24.37.193 (ClassC)
2014-02-24	198.24.37.193 (ClassC)
2014-12-07	66.251.247.131 (ClassC)
2015-05-18	167.114.141.169 (ClassC)
2015-08-04	213.251.186.43 (ClassC)
2015-08-10	104.20.26.127 (ClassC)
2015-08-14	104.20.24.127 (ClassC)
2015-08-18	104.20.27.127 (ClassC)
2015-08-18	104.20.23.127 (ClassC)
2015-09-15	104.31.69.82 (ClassC)
2019-06-25	104.20.12.63 (ClassC)
2019-06-25	104.20.13.63 (ClassC)
2020-02-03	104.31.84.223 (ClassC)
2020-02-03	104.31.85.223 (ClassC)
2025-07-31	23.227.38.65 (ClassC)

Port 443

HTTP/1.1 200 OKDate: Thu, 27 Jun 2019 16:49:04 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveSet-Cookie: __cfduidd9cc559ea9548751ad402a3546b8168aa1561654144;

!DOCTYPE html>html langen>head>meta http-equivContent-type valuetext/html; charsetUTF-8 />meta http-equivX-UA-Compatible contentIEedge>meta nameviewport contentwidthdevice-width, initial-scale1>meta namecsrf-token content0cDRNqXZCzjY2LU6S7XKjMcX94Q3brzC8RfI2htu />title>VampireFreaks/title>script src/cdn-cgi/apps/head/GNI66-oTHYoOswvD-vPYuV59DOw.js>/script>link relstylesheet href/_style/bootstrap.min.css>meta namecsrf-token content0cDRNqXZCzjY2LU6S7XKjMcX94Q3brzC8RfI2htu />link relstylesheet typetext/css href/_style/themeroller/custom.css mediascreen />link relstylesheet typetext/css href/_style/main_style.css?9 mediascreen />script src//ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js>/script>script srchttps://ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js>/script>script src/_script/3rd_party/notify.js>/script>script src/_script/main_scripts.js?7>/script>script src/_script/newsfeed_scripts.js?5>/script>script src/_script/bootstrap.js>/script>script>        (function(i,s,o,g,r,a,m){iGoogleAnalyticsObjectr;irir||function(){                    (ir.qir.q||).push(arguments)},ir.l1*new Date();as.createElement(o),                ms.getElementsByTagName(o)0;a.async1;a.srcg;m.parentNode.insertBefore(a,m)        })(window,document,script,https://www.google-analytics.com/analytics.js,ga);        ga(create, UA-880955-1, auto);        ga(send, pageview);    /script>script asyncasync srchttps://www.googletagservices.com/tag/js/gpt.js>/script>script>        var googletag  googletag || {};        googletag.cmd  googletag.cmd || ;    /script>script typetext/javascript>        googletag.cmd.push(function() {            googletag.defineSlot(/15977548/VF_Bottom_Left_Square, 300, 250, div-gpt-ad-1465353431894-0).addService(googletag.pubads());            googletag.defineSlot(/15977548/VF_Bottom_Right_Square, 300, 250, div-gpt-ad-1465353431894-1).addService(googletag.pubads());            googletag.defineSlot(/15977548/VF_Left, 160, 600, div-gpt-ad-1465353431894-2).addService(googletag.pubads());            goo

Subdomains

Date	Domain	IP
static.vampirefreaks.com	2025-04-24	172.66.43.147
e.vampirefreaks.com	2024-09-10	172.66.40.109
icons.vampirefreaks.com	2024-03-12	172.67.169.53
www.vampirefreaks.com	2025-07-01	23.227.38.74

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]