Help RSS API Feed Maltego Contact                        

Domain > ligatus.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as MALICIOUS

Files that talk to ligatus.com
MD5A/V
1dc63a529c0d0f5bc896e9d3cbe69968
d052d0e1d6de9589175bb4cc5f37e931[Adware.Conduit.3] [OpenCandy] [Win32/OpenCandy]
d26cde9a2137fbcf98535dad33d5cabe
bf403245d4f628289a6bb394d826afb0
55a401b8ad189e38275fc08dec8f5a8d
3756c0be193358d42d7aaa448ae44fa9
598503a377bd33cb2d20459a0c008d9a
efc72963f30ca51a545dc4edbd86c2a0
3f17b8a1969512219f1b95d2ff06611b
30f2940d52a28cc22e0f1145401ea589
6f055e8160c835325a5835d09693ba35[Macro.Trojan.Dropperd.Auto] [Heur.Macro.Downloader.d] [VBS/Jenxcus.A] [virus.office.obfuscated.1]
f5f22ede35c497297ddb2919cdce30c6

Whois
PropertyValue
Email [email protected]
NameServer ANYCAST2.IRONDNS.NET
Created 2005-01-10 00:00:00
Changed 2015-01-11 00:00:00
Expires 2016-01-10 00:00:00
Registrar COREHUB, S.R.L.

DNS Resolutions
DateIP Address
2012-08-278.27.10.125 (ClassC)
2012-12-228.12.211.254 (ClassC)
2012-12-258.254.70.126 (ClassC)
2013-01-07207.123.60.126 (ClassC)
2013-01-22192.221.126.254 (ClassC)
2013-01-224.23.47.126 (ClassC)
2013-02-018.27.130.126 (ClassC)
2013-02-08206.33.58.254 (ClassC)
2013-02-118.27.131.254 (ClassC)
2013-03-028.27.133.126 (ClassC)
2013-05-018.27.131.126 (ClassC)
2013-05-018.27.138.126 (ClassC)
2013-05-028.27.137.254 (ClassC)
2013-05-02198.78.197.126 (ClassC)
2013-06-128.27.135.254 (ClassC)
2013-08-29198.78.197.254 (ClassC)
2013-08-29198.78.212.254 (ClassC)
2013-08-2981.26.166.70 (ClassC)
2013-08-2981.26.166.11 (ClassC)
2013-10-1881.26.166.23 (ClassC)
2013-11-08199.93.59.126 (ClassC)
2013-11-088.27.133.254 (ClassC)
2013-11-228.27.134.254 (ClassC)
2013-11-24199.93.59.254 (ClassC)
2013-12-10198.78.221.126 (ClassC)
2014-03-1881.26.166.14 (ClassC)
2014-03-2395.100.249.137 (ClassC)
2014-03-2695.100.249.123 (ClassC)
2014-04-2592.122.214.58 (ClassC)
2014-05-2623.14.93.143 (ClassC)
2014-06-1023.62.237.103 (ClassC)
2014-06-1023.62.237.97 (ClassC)
2014-06-1895.100.249.81 (ClassC)
2014-07-0323.62.98.73 (ClassC)
2014-07-0323.62.98.128 (ClassC)
2014-07-0595.101.0.72 (ClassC)
2014-07-0695.101.0.41 (ClassC)
2014-07-1923.62.237.86 (ClassC)
2014-07-202.20.142.212 (ClassC)
2014-07-202.20.143.38 (ClassC)
2014-07-2095.100.249.49 (ClassC)
2014-07-2095.100.249.66 (ClassC)
2014-07-2023.62.237.95 (ClassC)
2014-07-2423.14.92.25 (ClassC)
2014-07-2423.14.92.57 (ClassC)
2014-07-2423.62.237.87 (ClassC)
2014-08-0423.62.237.89 (ClassC)
2014-08-1823.62.61.10 (ClassC)
2014-08-1823.62.61.11 (ClassC)
2014-09-1595.101.0.227 (ClassC)
2014-09-2295.101.0.193 (ClassC)
2014-09-2395.101.0.186 (ClassC)
2014-09-2792.122.213.218 (ClassC)
2014-09-3092.122.213.179 (ClassC)
2014-10-08195.95.193.84 (ClassC)
2014-10-1423.14.93.158 (ClassC)
2014-11-0570.39.163.130 (ClassC)
2014-12-0580.239.216.104 (ClassC)
2014-12-0692.122.214.88 (ClassC)
2014-12-0681.26.166.15 (ClassC)
2014-12-0881.26.166.183 (ClassC)
2014-12-1181.26.166.13 (ClassC)
2014-12-1680.157.149.64 (ClassC)
2014-12-1681.26.166.22 (ClassC)
2014-12-172.16.100.58 (ClassC)
2015-01-022.16.100.51 (ClassC)
2015-01-29173.205.6.162 (ClassC)
2015-03-052.16.100.26 (ClassC)
2015-03-182.16.155.147 (ClassC)
2015-03-1980.157.149.49 (ClassC)
2015-03-1980.157.149.35 (ClassC)
2015-03-202.16.155.139 (ClassC)
2015-04-0195.100.248.104 (ClassC)
2015-04-0195.100.248.120 (ClassC)
2015-04-1190.84.55.186 (ClassC)
2015-04-1578.152.57.152 (ClassC)
2017-07-055.35.226.108 (ClassC)
2019-12-0635.189.193.103 (ClassC)
2021-01-24104.115.80.64 (ClassC)

Port 80

Subdomains
DateDomainIP
ads-de.ret01.ligatus.com2013-10-0962.96.140.152
ads-nl.ret01.ligatus.com2017-10-07127.0.0.1
ads-fr.ret01.ligatus.com2013-04-01217.110.59.28
ads-tr.ret01.ligatus.com2014-04-0862.96.140.152
fr1.ligatus.com2017-10-3181.26.166.13
d2.ligatus.com2018-12-0681.26.166.70
report-d2.ligatus.com2017-11-2081.26.166.13
dsp2.ligatus.com2020-08-13107.178.252.31
directads2.ligatus.com2015-02-20165.254.155.99
a.ligatus.com2014-12-05205.185.206.161
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information