Help RSS API Feed Maltego Contact                        

Domain > grassitup.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
https://otx.alienvault.com/pulse/566763ec67db8c0fd...    
https://otx.alienvault.com/pulse/5668ab624637f27ed...    
https://otx.alienvault.com/pulse/5668ae0067db8c0fd...    
https://otx.alienvault.com/pulse/566a129f67db8c0fd...    
https://otx.alienvault.com/pulse/566a12f14637f27ed...    
https://otx.alienvault.com/pulse/566b30ea67db8c0fd...    
https://techhelplist.com/spam-list/1000-reference-...    
https://techhelplist.com/spam-list/1002-payment-re...    
https://techhelplist.com/spam-list/1003-invoice-ou...    
https://techhelplist.com/spam-list/996-invoice-fro...    
https://techhelplist.com/spam-list/997-your-order-...    
https://techhelplist.com/spam-list/999-invoice-fro...    

Files that talk to grassitup.com
MD5A/V
d62c66750363a910542c39b2d726c656[Ransom.CryptoWall] [BehavesLike.Win32.PackedAP.fh]
07cc01a79004651394e6dad448d70b8d
ee7736125913c2ee3e8c80d209d9690c[BehavesLike.JS.ExploitBlacole.lv]
972992a13ebc4ead38aef2a76cf1cd07[BehavesLike.JS.ExploitBlacole.lv]
0ccfe4e2603f5c7be0042c2776eef897[BehavesLike.JS.ExploitBlacole.lv]
347689aeb3cc79fe1ca4443a0b851469[BehavesLike.JS.ExploitBlacole.lv]
47657afdadde62617decacf7674c4e5f
7924e4f1ceffad7fb00ab73bb812ee97
ebedf60a71e1e6a6899484307623f013[BehavesLike.JS.ExploitBlacole.lv]
35bc2e2c800e2228d0068eb39010259c
f53889710deb0bdf5c6b48218aabcf20
17f2db1ee1b452d505d9b2d911325e84[JS/TrojanDownloader.Nemucod.CF] [BehavesLike.JS.ExploitBlacole.lv]
07d9cc9b347277489215a2e5142dc3a1
62e1ac7215e6595f513272aa8040247a[JS:Trojan.Script.CRG] [JS:Trojan.Script.CRG] [JS/TrojanDownloader.Nemucod.CF] [JS:Trojan.Script.CRG] [JS/Dloadr-EAD] [JS:Trojan.Script.CRG] [BehavesLike.JS.ExploitBlacole.lv] [JS:Trojan.Script.CRG] [JS/Downloader] [JS:Trojan.Script.CRG] [Trojan-Downloader.JS.Nemucod]
46c76c9aa691c74dc3dd3b467d75e9fc
42b27f4afd1cca0f5dd2130d3829a6bc
c3f140af22b9c665f2cca5bc20c80ba1[JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [JS/TrojanDownloader.Nemucod.CI] [Trojan-Downloader.JS.Cryptoload.at] [JS:Trojan.Crypt.NR] [BehavesLike.JS.ExploitBlacole.zv] [JS:Trojan.Crypt.NR] [JS:Trojan.Crypt.NR] [JS/Nemucod.CI!tr]
cbfff201dc86593ed951d67c1e27f5f7[Trojan.Win32.Swizzor.1!O] [Mal/Wonton-BX]
6fa64a3af1352b9f267efa08dcaab484
53690c78f4526292e0982446c009c71f[JS_NEMUCOD.XXZA] [JS_NEMUCOD.XXZA] [BehavesLike.JS.ExploitBlacole.lv] [Troj/JSDown-BG]

Whois
PropertyValue
NameServer NS56.DOMAINCONTROL.COM
Created 2005-06-06 00:00:00
Changed 2015-06-11 00:00:00
Expires 2020-06-06 00:00:00
Registrar GODADDY.COM, LLC

DNS Resolutions
DateIP Address
2015-12-0350.63.71.1 (ClassC)
2018-10-2350.63.202.1 (ClassC)
2020-05-10184.168.131.241 (ClassC)
2020-07-2852.58.78.16 (ClassC)
2021-02-27184.95.32.203 (ClassC)
2024-06-0215.197.142.173 (ClassC)
2024-06-143.33.152.147 (ClassC)
2025-05-1015.197.225.128 (ClassC)
2025-08-013.33.251.168 (ClassC)
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information