Domain > www.km-nyc.com

This indicator is referenced in AlienVault OTX pulse ""

Reports

https://otx.alienvault.com/pulse/553e18f9b45ff54b6...

https://www2.fireeye.com/rs/fireye/images/rpt-apt3...

Files that talk to www.km-nyc.com

MD5	A/V
db7b0317b72b023c0680f221bc61d255
CDFF892F0B9CCCBD3E746145F7E495B2
E944A94C0D42BAE1B5FEB64F5A70127B
e3ae3cbc024e39121c87d73e87bb2210
7F966313CBC16FBD0162497ED31EA810
B6F588DD0DCBC9EE0A1288C69F117B2F
65232A8D555D7C4F7BC0D7C5DA08C593
03B64340257A264D2261F7E6348D6145
bb4e5ec34608d02e2d9b90ca23e19df3	[HW32.Packed.78FD] [Backdoor.Lecna.AB] [Backdoor/W32.Lecna.20480] [Backdoor.Win32.Lecna!O] [TrojanAPT.LecnaCBack.MUE.Z3] [BackDoor-CSB] [Trojan.FakeMS.EDIE] [Backdoor.Lecna.Win32.25] [Backdoor/Lecna.ab] [W32/Trojan.AAWD] [W32.Lecna.D] [BKDR_LECNA.SM] [Win.Trojan.Backspace-1] [Backdoor.Win32.Lecna.ab] [Backdoor.Lecna.AB] [Trojan.Win32.Lecna.johs] [Backdoor.Lecna.AB] [Backdoor.Win32.Lecna.AB] [Backdoor.Lecna.AB] [BackDoor.Dizhi] [BKDR_LECNA.SM] [BehavesLike.Win32.Ipamor.mc] [Troj/Lecna-Q] [Backdoor/Lecna.i] [W32/Bdoor.AB!tr.bdr] [Trojan[Backdoor]/Win32.Lecna] [Win32.Hack.Lecna.ab.(kcloud)] [Backdoor.Lecna.AB] [Backdoor:Win32/Lecna!dha] [Downloader/Win32.Small] [Backdoor.Lecna.AB] [Backdoor.Lecna] [Backdoor.Lecna.CH] [Backdoor.Win32.Lecna] [Backdoor.Lecna.AB] [Win32/DH{YQMT?}]

Whois

Property	Value
Email	185871567@qq.com
NameServer	FREEDNS2.REGISTRAR-SERVERS.COM
Created	2014-05-28 00:00:00
Changed	2014-05-29 00:00:00
Expires	2015-05-28 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
0000-00-00	23.105.37.138 (ClassC)
2013-04-01	74.200.220.210 (ClassC)
2013-07-25	220.165.15.4 (ClassC)
2015-05-24	23.105.37.138 (ClassC)
2015-06-21	50.63.202.35 (ClassC)
2016-04-13	69.195.129.72 (ClassC)
2016-11-08	58.158.177.102 (ClassC)
2018-02-04	23.236.251.235 (ClassC)
2019-01-24	136.0.242.90 (ClassC)
2020-02-27	23.110.233.4 (ClassC)
2020-03-28	23.110.224.13 (ClassC)
2020-11-09	2.56.124.76 (ClassC)
2021-01-29	208.91.197.46 (ClassC)
2021-05-19	156.240.6.27 (ClassC)
2022-06-29	160.124.63.155 (ClassC)
2023-07-23	204.11.56.37 (ClassC)
2024-07-26	154.93.128.5 (ClassC)
2025-02-11	156.248.63.247 (ClassC)
2026-01-16	154.218.163.57 (ClassC)

Port 80

HTTP/1.1 500 Internal Server ErrorContent-Type: text/htmlServer: Microsoft-IIS/7.5Date: Wed, 15 May 2019 00:21:24 GMTContent-Length: 1141

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Strict//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd>html xmlnshttp://www.w3.org/1999/xhtml>head>meta http-equivContent-Type contenttext/html; charsetgb2312/>title>500 - �ڲ�����������/title>style typetext/css>!--body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}fieldset{padding:0 15px 10px 15px;} h1{font-size:2.4em;margin:0;color:#FFF;}h2{font-size:1.7em;margin:0;color:#CC0000;} h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} #header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:trebuchet MS, Verdana, sans-serif;color:#FFF;background-color:#555555;}#content{margin:0 0 0 2%;position:relative;}.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}-->/style>/head>body>div idheader>h1>����������/h1>/div>div idcontent> div classcontent-container>fieldset>  h2>500 - �ڲ�����������/h2>  h3>�����ҵ���Դ�������⣬����޷���ʾ��/h3> /fieldset>/div>/div>/body>/html>

Subdomains

Date	Domain	IP
www.km-nyc.com	2013-04-01	74.200.220.210

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]