dlt.mail.ru

MGL Mail.ru Internet Assets Limited

Domain Information

The domain dlt.mail.ru registered by MGL Mail.ru Internet Assets Limited was initially registered in September of 1997 through RU-CENTER-REG-RIPN. Currently this domain has been known to host various forms of malware. The hosted servers are located in Redwood City, California within the United States which resides on the SKYE network.
Registrar:
RU-CENTER-RU

Server location:
California, United States (US)

Create date:
Saturday, September 27, 1997

Expires date:
Saturday, October 01, 2016

ASN:
AS26008 NOMINUM-SKYE1 - SKYE

Root domain:

Scanner detections:
Malware distribution  (83% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.MailRu.DD, Win32.Generic
100.00%

The domain dlt.mail.ru has been seen to resolve to the following 3 IP addresses.

lfrd.mail.ru
March 1, 2016

lfrd.mail.ru
March 1, 2016

search.dnsassist.verizon.net
February 8, 2014

File downloads found at URLs served by dlt.mail.ru.

1 / 68      (Malware)

1 / 68      (Malware)

1 / 68      (Malware)

1 / 68      (PUP)

The following 62 files have been seen to comunicate with dlt.mail.ru in live environments.

 
Latest 20 of 67 files

URL:
http://dlt.mail.ru/

Title:
“Mail.Ru: почта, поиск в интернете, новости, игры”

Description:
“Почта Mail.Ru — крупнейшая бесплатная почта, быстрый и удобный интерфейс, неограниченный объем ящика, надежная защита от спама и вирусов, мобильная версия и приложения для смартфонов. Доступ по IMAP, SMS-уведомления, интерфейс на разных языках и ...”

SSL certificate subject:
CN=*.mail.ru, OU=IT, O=LLC Mail.Ru, L=Moscow, S=RUSSIAN FEDERATION, C=RU

SSL certificate issuer:
CN=GeoTrust SSL CA - G3, O=GeoTrust Inc., C=US

Web server:
nginx/1.6.2