Help RSS API Feed Maltego Contact                        

Domain > gammus.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://blog.dynamoo.com/2015/12/malware-spam-unpai...    
http://vxvault.net/ViriList.php    
https://otx.alienvault.com/pulse/5671e2da4637f2563...    
https://otx.alienvault.com/pulse/56c374ab67db8c125...    

Files that talk to gammus.com
MD5A/V
aebc9f6f287b462801bb8572d2429823[Trojan.Script.Kryptik.dzcqji] [TrojanDownloader:JS/Swabfex.D] [JS/Downloader] [JS/Kryptik.AYN]
76f854f350718e679f6ffe72a9d92ad7[Trojan.Script.Kryptik.dzcqji] [JS/Downloader]
fc1513ab0a69ccac0e3dc16123761834[Trojan.Script.Kryptik.dzcqji] [JS/Downloader]
1ce90dfa5aa019c90af0c6a3113d80cc[JS_SWABFEX.F] [Trojan.Script.Kryptik.dzcqji] [JS_SWABFEX.F] [TrojanDownloader:JS/Swabfex.D] [JS/Downloader] [Trojan-Downloader.JS.Swabfex]
d36919be4c911effc3dfa2177bf1422f[Trojan.Script.Kryptik.dzcqji] [JS/Downloader] [TrojanDownloader:JS/Swabfex.D]
a3f5ac38921ff4c2c3e857a20d99957d[Trojan.Script.Kryptik.dzcqji] [TrojanDownloader:JS/Swabfex.D] [JS/Downloader]
2690665f1b9419f8dd01b82ad7bed6ce[Trojan.Script.Kryptik.dzcqji] [TrojanDownloader:JS/Swabfex.D] [JS/Downloader]
ae7a61fb935cdc77447b09f9408f0f34[Trojan.Script.Kryptik.dzcqji] [JS_NEMUCOD.XYAA] [JS.S.Downloader.20436[h]] [JS_NEMUCOD.XYAA] [BehavesLike.JS.ExploitBlacole.lm] [Troj/TeslaC-B] [TrojanDownloader:JS/Swabfex.D] [JS/Downloader] [JS/Kryptik.AYN] [Trojan.JS.Crypt]
397a04882b5a796fe248640019e29a77
2aaff48db74e3e29ace0b0e362c0b15b[JS:Trojan.JS.Downloader.BA] [JS/Nemucod.aj] [JS:Trojan.JS.Downloader.BA] [JS/Downldr.CZ!Eldorado] [Trojan.Script.Kryptik.dzcqji] [JS:Trojan.JS.Downloader.BA] [JS:Trojan.JS.Downloader.BA] [JS/Nemucod.aj] [Troj/JSDown-BG] [JS/Downldr.CZ!Eldorado] [TrojanDownloader:JS/Swabfex.E] [JS:Trojan.JS.Downloader.BA] [JS:Trojan.JS.Downloader.BA] [JS/Downloader] [JS/Kryptik.AYO] [JS/Kryptik.AYO!tr]

Whois
PropertyValue
Email ballin@gammus.com
NameServer DNS2.MIKYMAUS.IN
Created 2015-12-11 00:00:00
Changed 2015-12-11 00:00:00
Expires 2016-12-11 00:00:00
Registrar GUANGDONG NAISINIKE

DNS Resolutions
DateIP Address
2015-12-1293.189.42.21 (ClassC)
2015-12-12149.202.234.190 (ClassC)
2015-12-13178.33.200.177 (ClassC)
2015-12-1483.69.233.102 (ClassC)
2015-12-145.178.71.5 (ClassC)
2015-12-1584.200.69.60 (ClassC)
2015-12-165.178.71.10 (ClassC)
2015-12-16185.69.152.145 (ClassC)
2017-03-0354.165.22.2 (ClassC)
2017-03-0352.55.207.183 (ClassC)
2017-03-0352.1.32.25 (ClassC)
2017-03-2654.236.195.15 (ClassC)
2017-04-3052.204.129.22 (ClassC)
2017-04-3054.85.127.70 (ClassC)
2017-05-0134.199.238.33 (ClassC)
2017-11-1052.71.185.125 (ClassC)
2018-01-1154.174.212.152 (ClassC)
2018-06-0152.86.23.17 (ClassC)
2018-07-1452.72.89.116 (ClassC)
2018-07-1452.5.142.190 (ClassC)
2018-08-1652.54.24.134 (ClassC)
2018-08-1652.6.128.155 (ClassC)
2018-09-1052.7.6.73 (ClassC)
2018-09-1752.4.66.100 (ClassC)
2018-09-1754.152.137.87 (ClassC)
2018-09-2552.5.251.20 (ClassC)
2018-09-2552.6.46.72 (ClassC)
2018-09-2552.87.45.42 (ClassC)
2018-10-2452.22.89.169 (ClassC)
2018-10-2454.144.21.246 (ClassC)
2018-11-2952.73.179.54 (ClassC)
2018-11-2954.208.56.179 (ClassC)
2019-03-1223.20.239.12 (ClassC)
2019-04-0934.200.200.95 (ClassC)
2019-04-093.94.104.205 (ClassC)
2019-05-17209.99.64.18 (ClassC)
2019-05-2535.169.58.188 (ClassC)
2019-05-2554.208.77.124 (ClassC)
2019-08-3052.58.78.16 (ClassC)
2023-12-243.64.163.50 (ClassC)
2025-06-2376.223.54.146 (ClassC)
2025-07-2313.248.169.48 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
www.gammus.com2025-05-2676.223.54.146
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information