» accounts.google.com.ua
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (3)
Related Domains (39)

accounts.google.com.ua

Domain Information

Server location:

California, United States (US)

ASN:

AS15169 GOOGLE - Google Inc., US

Root domain:

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP (M)

100.00%

The domain accounts.google.com.ua has been seen to resolve to the following IP address.

lga15s47-in-f3.1e100.net

September 15, 2016

File downloads found at URLs served by accounts.google.com.ua.

1 / 68 (Malware)

https://accounts.google.com.ua/accounts/SetSID?ssdc=1&sidt=ALWU2cv3qhg5FgpliabYuIqvuGMmlHafeOzTIVNru4aStEVa2UYIS0JT4TBQNLI0AIskxi9eb52I9fe6NdxK2dOdjPcMvyh FAXAmKEBxkzAV/2gdPU VOu2FJYoOQYoSb3SAHAMNJzMzrH F2vfedCiyO9m2vWpNjfTV08Hq0IGgmeF0rKqmFbFwIJi pA EhmO8HZ3JZ9q64LPlJPPyG8Yx9p4VavcqQSDr8rJlbA5iN5ZKOyC5/cpn5vSdtYRXeZOtwnxU8UW&continue=https://docs.google.com/nonceSigner?nonce=e5cga3aubgo46&continue=https://doc-14-84-docs.googleusercontent.com/docs/securesc/kevq4er5blfm8prb7vmj32kl4frqfulv/srrr5hoi1k52kq5mg3nkf59sa937ms5a/1470326400000/14344134487931409204/.../0BxXn3X1Zzu2cOFV0S1ZzanF4Nnc&hash=21ua6furnk7losplv906umnpk6u809su&auth=mQN3-JkwxhSkczD92xXtgRmg4yFZGy39GwohAAGX3yrxWAYovHjZgsc-NMi-PHCGZhTcsA.&authuser=0 (47634-tv-torrent.org-torrent.exe)

The following 3 files have been seen to comunicate with accounts.google.com.ua in live environments.

TCP » 172.217.4.67:80

browser.exe (Browser)

TCP » 172.217.4.67:80

browser.exe (Speed Browser by Long Mile Solutions)

TCP » 172.217.4.67:443

Related Domains

30 of 39 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.