home

downloader.disk.yandex.ua

Domain Information

Server location:
Moskva, Russia (RU)

ASN:
AS13238 YANDEX Yandex LLC

Root domain:
yandex.ua

Scanner detections:
Detections  (54% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Yandex (L), PUP.Yandex.Installer.Meta (L)
87.10%

Qihoo 360 Security
HEUR/QVM05.1.Malware.Gen, HEUR/QVM03.0.Malware.Gen, HEUR/Malware.QVM03.Gen
9.68%

Total Defense
Win32/Jorik.KJ
3.23%

Trend Micro House Call
Suspicious_GEN.F47V0826
3.23%

Avira AntiVirus
TR/Dropper.Gen
3.23%

IKARUS anti.virus
Trojan.Dropper
3.23%

Bkav FE
W32.HfsAtITPSINF
3.23%

The domain downloader.disk.yandex.ua has been seen to resolve to the following IP address.

77.88.21.127
downloader.disk.yandex.ru
October 1, 2015

File downloads found at URLs served by downloader.disk.yandex.ua.

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/76517af00afbad94637cd8133aa4503b66133ae60bb442e9f47d8ec5bc722c41/579e6601/.../x-msdownload&media_type=executable&hid=f9636edc6dd91d09244d925bd5c9eae2  (f32e6f3a2790acf728766b807dd62310)

0 / 68
https://downloader.disk.yandex.ua/disk/6654b95a728a67685d36462fd33a34c024bbfd9df31151ab1cdfeabba57ee38d/57422ea6/T8YnEspLl0cW60scd1p9JkzG86qYJDMu0qaIW1fpzBJasDyDJfJCm9ldL8kj1uzdaOj0QHWX24N8Iqs3YVwCFw==?uid=0&filename=Epic 3D Weapons Command Block 1.9.zip&disposition=attachment&hash=M3piYDEGCjQUCFJp9K6qZudJtf8ZI/.../x-zip-compressed&fsize=136901&hid=19bbd8be03a62f7770b4786cca2b7abc&media_type=compressed&tknv=v2  (f531960a3cd61d0b8897651ae616c56f)

0 / 68
https://downloader.disk.yandex.ua/disk/20125dba45e314de66d64078cb0a704bcafb905e1b6ea190e18c42356389b423/5789753e/Rb42C4dsEF49gVo7eCuZzxe2UOLwK5EpKJ_IyPeS1_RH98-bKxk2Ahmi07l5yYqsrNy84M-sbtpgOnTGgwi-hg==?uid=0&filename=Paint Trace v.1.0.1.exe&disposition=attachment&hash=/.../x-msdownload&fsize=1527522&hid=0c12caa659dfa6a6bd04c7ee700699eb&media_type=executable&tknv=v2  (722cbf7f2aeea0ca541e93ca7da48dd7)

0 / 68
https://downloader.disk.yandex.ua/disk/9cacb0c34e8d1131e59091e4537a0880985cb1b0b64ece7f3119e04ff63d77c6/56a550c0/sL0l38eBwdxzx4rbxqKUBMs_Dyc5Qj8fPT433gdzhxjf4o9-4eURzoJiodIPLSjEOiWuft8cDXMOLoO1S5_kTA==?uid=0&filename=WinSetupFromUSB-1-6.exe&disposition=attachment&hash=CM21LJ/ 7JXyz3UDu5yXdHk l6OilB66Ae9U7NIC/.../x-msdownload&fsize=24923805&hid=b25911cb371c47930a5b313c2d510f9f&media_type=executable&tknv=v2  (248b50f06f4559685fe5d266ea429638)

0 / 68
https://downloader.disk.yandex.ua/disk/e0786c5301369098cb8bda370a842477ea19dc281ab9d25666c60318e1a2b26e/56944e51/HAthA7HKIYLwcyr4LzCuYayCgP3lLh_rRvXA9IMif0PGWf5HoxbUqabukobYi3L8aw-RvM17w0sPoyz6TKXEvw==?uid=0&filename=??????-??????? ?. ????????? ???????? ?????.rar&disposition=attachment&hash=W/YQYXLLsPLqXZYmhvj212Sk/KIqr6d0 4gAwGoo/.../x-rar&fsize=563670&hid=f4f1ebd9ca916429770ba623758ee0f8&media_type=compressed&tknv=v2  (корнеа-ионеску а. румынский народный танец.rar)

0 / 68
https://downloader.disk.yandex.ua/disk/30191a4cc016273e86153fd475ee5f8ff6dddc3de8d620175448ab0febc78855/57a522ba/VVtFpith2BM_eOSDgKT7yi56vbBUGAlAGeEIdk8pKfZXXTQQkA5tsIqlnBv8eBEXPtNT_1gcOTLgj6384p7VQQ==?uid=0&filename=???????? ????. ?????? root.fb2&disposition=attachment&hash=OzAWXaLiTmA/.../x-fictionbook xml&fsize=615475&hid=f13227a260bc01403da4b365e650473e&media_type=book&tknv=v2  (чубарьян саша. полный root.fb2)

0 / 68
https://downloader.disk.yandex.ua/disk/ee4a7490d00dd4fe3d30bc0586197468a3bc8d834cc365a248f51a1527ba9d23/57a523eb/.../x-fictionbook xml&fsize=510149&hid=fa40b30c56b374013761b127b5557854&media_type=book&tknv=v2  (техно-корп-(свободный токио).fb2)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/6cb99275e7af16114c6fe314c802b1208b108b784503144b7d9a34c940c5d134/5794f3ea/.../x-msdownload&media_type=executable&hid=437df3546030d1781035e48bec36d661  (94068fdd74b8511475e8d569b3f896d7)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/0927030b21f632278449822cae63bb5bd9289b900d5b4982ec3ad6503e2a873b/57643a99/.../x-msdownload&media_type=executable&hid=1baf5565dbf7eeae7d097632197a04f6  (8c8fc584eef621e9286ba0be558a8914)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/43728a2f72ad3bba3284b58e5ad3965f754caea5c14b3f2b61200d4ccce04ef1/57406461/.../x-msdownload&media_type=executable&hid=1baf5565dbf7eeae7d097632197a04f6  (bb0b3bf2f8e5eacd02fc914c3da69373)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/22c4651a1a1afbadcfd2b2c80a8edc57daac25dfa8d44334633dc808383d154d/57a110ba/.../x-msdownload&media_type=executable&hid=f9636edc6dd91d09244d925bd5c9eae2  (86005d84793615561b4461e2bd4937d1)

1 / 68
https://downloader.disk.yandex.ua/disk/aafc9aba718f2b5449f912c68413af34ec86101465c20bf292b6f2b40f766fde/579e07f7/.../x-msdownload&fsize=291653&hid=136a8842cb751b1475d746e3a8565905&media_type=executable&tknv=v2  (7d2888367428524262970ec2b6a4da8c)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/ebeaca3bc317c7c80d3b78ed14b0770fa80adf0ffc87b51c2aa4d57312e6fce2/5793360d/.../x-msdownload&media_type=executable&hid=437df3546030d1781035e48bec36d661  (a5451ca00eddf7ac3f966e689cce65c2)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/183803f8001c72b774fa434035ae9ef6d5c06bffbe1d0fa492fab3b18afaa684/579fbb2c/.../x-msdownload&media_type=executable&hid=4cfd71af3a46b00937ff9fd9e4e51bc8  (612929d5bd7daed5a78b2271ffd984c5)

0 / 68
https://downloader.disk.yandex.ua/disk/41dd32e6cadf181cf6a8db178e45f25051235ea37f4961badb05efed3bc04233/579a95f3/t9Us9j4ELXD2qvh47057X4_dyZqr0zFc69n7GU1EdfXUjQib2TCJlOwmxXiPQHn3uxqdtTIoS-rY4S5gHaoj8w==?uid=0&filename=L2Phoenix.ru.exe&disposition=attachment&hash=Agq6mboH276Gj072ewzt577j0SodDOUCSJmcgpd/.../x-msdownload&fsize=1821184&hid=c196142ea66e9d4dc3e2d8178c210f1b&media_type=executable&tknv=v2  (120c8e5b9a9f2b11bd129f32f0a979f4)

0 / 68
https://downloader.disk.yandex.ua/disk/4fa0f6473ae4be1a5edbc518b1ec69b4ea4f640e0e871f16e33a2fc657bcf75b/57a15709/.../java-archive&fsize=71850&hid=18dee91647258eacecdc302f08e6fefe&media_type=unknown&tknv=v2  (dd703ee0383911e06a329849e82cc194)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/478c2f2339e9ebc1c53b7d204df8c526b8de6bfc567321f4f80db434e598ce67/578ac4c6/.../x-msdownload&media_type=executable&hid=437df3546030d1781035e48bec36d661  (a745a66bd01c2c0e1fb231f0fab06d7e)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/bf059d8f1498a077ae6abb6e1a2276e9e39eaf0d2cf89536e79ddd6130fb452b/573b28dd/.../x-msdownload&media_type=executable&hid=1baf5565dbf7eeae7d097632197a04f6  (29a9b6435a1487e7dd06189081777bfa)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/5d8d3bab2545a37f0620c28c732838968f89ece561692de4e958441f063ada0a/5730d8bc/.../x-msdownload&media_type=executable&hid=7a2aa5f014a67d973ee489c5694c5b7a  (785481f53b4a0c15fd8513e7bbda2d4c)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/d94202597267454d16176203e7d63506308a42638caab55c936db8e8face3145/573e2312/.../x-msdownload&media_type=executable&hid=1baf5565dbf7eeae7d097632197a04f6  (a7c848ba22e4b51cba01444c72a07f7b)

0 / 68
https://downloader.disk.yandex.ua/disk/cc546541c49c27a153062d25ca34799abbc8453573fffa3b99ae96a62ea49946/56e9d048/Wz7D_fGeEOiEye6kWUEMB1V6CLxy25o7TDDyEI12YUs2myui2XrTpR3SfYaMv34DfA4Kap8EHlXiNcs-yVzxXw==?uid=0&filename=Doodle_Jump_v1.0.9.5_Level_Editor_setup.exe&disposition=attachment&hash=W6M5YySEUCY/0P5hFTu6ObTsBM qByDkne1dLQi5U/.../x-msdownload&fsize=6563548&hid=06feeba21ac00cc113f9a21b98f547ca&media_type=executable&tknv=v2  (febf287a6cfa4ebd5722f11b11c2546f)

0 / 68
https://downloader.disk.yandex.ua/disk/01e6946573150773b346afbb477b2e695233543f9ec1baf5d2ab245641f98062/5752d100/vybn8IXUxDPNfmRqC2FugoaD5Sk7Y6wdWQ8xkVE4sG-esO2UFfAQFhCmQHRVyEJg3OMHSEHqkabjpZoLMAao5g==?uid=0&filename=aim-ot-Ogre-Ninja.rar&disposition=attachment&hash=Uw2FjLGs61fZqB1TZAszQGw1227TCZukFTnblDq/.../x-rar&fsize=165752&hid=447325968b08990a8f1b8efed6a2f6a8&media_type=compressed&tknv=v2  (d9f71f8bf96eec1ac19e818269115b7f)

0 / 68
https://downloader.disk.yandex.ua/disk/f661d6f3b4e5e2deced2158380220c7dbc64ee1fd6823a64533665b96581935d/57543e95/1VwItIDCystvK3BaAudQAnZKgLNL18LkjJIsZLdOoRaqOXpw3RO9sdMX2Ns4rLP1dHuZ8Pn6wRi3T_AEubMDLw==?uid=0&filename=????????? ?????????? ? ??????????? ? ???????? ?? ????????????.rar&disposition=attachment&hash=6f2lAt82wr/.../x-rar&fsize=223572&hid=e05b7c265e0789145450112413f24cc0&media_type=compressed&tknv=v2  (читерский автоприцел с упреждением и захватом за препятствием.rar)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/088840204c7e11065709eb032c8a3881cfecddb7e7f67c4c5fe9d2af039ecf05/5798afd5/.../x-msdownload&media_type=executable&hid=4cfd71af3a46b00937ff9fd9e4e51bc8  (5824dccb21c1f2ef0ffbe9cac55f1b80)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/bdb57c26dcbad1818ab6ebe6fb7eb5976fc12655a24ef674dd1470f679c2ab7e/57755156/.../x-msdownload&media_type=executable&hid=f687f2003b3e6d5c6de51fc0f773f0f4  (0ed5967e8495b3918d1f303fff105500)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/d44eea71bd7733c9cfe5f9428ff981da503792e56861862b08eb5138e48ccfe1/579a0b18/.../x-msdownload&media_type=executable&hid=f9636edc6dd91d09244d925bd5c9eae2  (a135c87c7e0cd191b3afc5468975dd7c)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/5b20a75e7bac3534e56071b7b73144b6d26b4f8c37f09a368eee850bb822c7bb/5782898b/.../x-msdownload&media_type=executable&hid=f687f2003b3e6d5c6de51fc0f773f0f4  (149d96cddba592e967a7515841779e5b)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/d60b4a7781c766537c9612fb9cec66bf3e8748d2808476a0c85cda6b4cc0eff1/579e3eb3/.../x-msdownload&media_type=executable&hid=f9636edc6dd91d09244d925bd5c9eae2  (7f2fa3b43b3d92bd384b944681daa5fa)

0 / 68
https://downloader.disk.yandex.ua/disk/4a606cec5ed70db746d6f3ff31b3e2aa676063cbb428a1f099a0eea0aa2523cb/572d36a6/.../x-rar&fsize=180855&hid=ec01093b5d27b6e62a9998ebf78be9ef&media_type=compressed&tknv=v2  (e0c7f8d5b6d83d2cb1d5db086508ab85)

1 / 68      (PUP)
https://downloader.disk.yandex.ua/share/faffa236c70c2daed9067dba6ebfbac15ac49957e861ae7553072c06759b2607/576ddb8b/.../x-msdownload&media_type=executable&hid=a8e19391ea020fb14d1425cc1418c747  (221b4a62100f8d542ba79d6cce458f4d)

 
Latest 30 of 965 download URLs

The following 19 files have been seen to comunicate with downloader.disk.yandex.ua in live environments.

TCP » 77.88.21.127:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 77.88.21.127:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 77.88.21.127:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 77.88.21.127:443
UCBrowser.exe (by UCWeb)

TCP » 77.88.21.127:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 77.88.21.127:443
kometa.exe (Kometa (1.0.0.0) by Kometa Authors)

TCP » 77.88.21.127:443
uran.exe (Uran by uCoz Media and Chromium Authors)

TCP » 77.88.21.127:443
UCBrowser.exe (by UCWeb)

TCP » 77.88.21.127:443
YandexDisk.exe

TCP » 77.88.21.127:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 77.88.21.127:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 77.88.21.127:443
yandexdisksetupru.exe

TCP » 77.88.21.127:443
yandexdisksetupen.exe (Yandex.Disk by Yandex)

TCP » 77.88.21.127:443
vosteran.exe

TCP » 77.88.21.127:443
ekrn.exe (ESET Smart Security by ESET)

TCP » 77.88.21.127:443
mybrowser.exe (MyBrowser)

TCP » 77.88.21.127:443
kometa.exe (Kometa by Kometa Authors)

TCP » 77.88.21.127:443
ed7cf6a31e4b9a4e5984c09ab44f4de8.exe

TCP » 77.88.21.127:443
run_csgo.exe

com.tr

yandex.com

yandex.ru

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.