malwr.com is a fantastic malware research website that utilizes the Cuckoo Sandbox which allows users to upload files and receive a full detailed dynamic analysis of what the files does including network activities, and much more. Malwr was created and operated by Claudio nex Guarnieri and Alessandro jekil Tanasi and powered by The Shadowserver Foundation. The domain malwr.com registered by Claudio Guarnieri was initially registered in March of 2010 through GANDI SAS. The hosted servers are located in San Jose, California within the United States which resides on the Hurricane Electric, Inc. network.
Registrant:
Claudio Guarnieri
Server location:
California, United States (US)
Create date:
Tuesday, March 9, 2010
Expires date:
Wednesday, March 9, 2016
Updated date:
Wednesday, March 4, 2015
ASN:
AS6939 HURRICANE - Hurricane Electric, Inc.,US
Scanner detections:
Malware distribution (80% detected)
Scan engine
Details
Detections
McAfee
Artemis!C6A0B1016CD8, generic!bg.ftt, Artemis!F99D5D0E6F9E, Artemis!6B65D5803184, GenericR-EZX!E822C6C07D88, BackDoor-EZG.b
66.67%
Trend Micro House Call
TROJ_GEN.F47V1219, TROJ_GEN.R01ZH09BB15, PAK_Generic.001, TROJ_GEN.F0C2C00AM15, TSPY_ZBOT.YUYAKU, BKDR_FYNLOS.SMIA
66.67%
AVG
MalSign.Adpeak, FakeAlert, Inject2, Atros, Zbot, Delf
66.67%
Microsoft Security Essentials
Adware:Win32/Adpeak, HackTool:Win32/Wincred.H, Trojan:Win32/Chanitor.A, Backdoor:Win32/Fynloski.K, PWS:Win32/Fareit, Backdoor:Win32/Fynloski.A
66.67%
Sophos
AdPeak, Troj/Agent-ALEF, Troj/MSIL-DTH, Troj/Fareit-TZ, Mal/DelfInj-A
55.56%
ESET NOD32
Win64/Adware.Adpeak (variant), Win32/Injector.BSXD, MSIL/Kryptik.DAI (variant), Win32/PSW.Fareit, Win32/Delf.OAZ
55.56%
VIPRE Antivirus
Adware.Adpeak, Trojan.Win32.Generic, Backdoor.Win32.Fynloski.A
55.56%
MicroWorld eScan
Gen:Variant.Graftor.Elzob.9261, Trojan.GenericKD.2084628, Trojan.GenericKD.2593985, Trojan.GenericKD.2859501, Backdoor.Fynloski.S
55.56%
avast!
Win32:Evo-gen [Susp], Win32:PePatch-P [Trj], Win32:Malware-gen, Win32:Flooder-GR [Trj]
55.56%
Bitdefender
Gen:Variant.Graftor.Elzob.9261, Trojan.GenericKD.2084628, Trojan.GenericKD.2593985, Trojan.GenericKD.2859501, Backdoor.Fynloski.S
55.56%
F-Secure
Gen:Variant.Graftor.Elzob.9261, Trojan.GenericKD.2084628, Trojan.GenericKD.2593985, Trojan.GenericKD.2859501, Backdoor.Fynloski.S
55.56%
Emsisoft Anti-Malware
Gen:Variant.Graftor.Elzob.9261, Trojan.GenericKD.2084628, Trojan.GenericKD.2593985, Trojan.GenericKD.2859501, Backdoor.Fynloski.S
55.56%
G Data
Gen:Variant.Graftor.Elzob.9261, Trojan.GenericKD.2084628, Trojan.GenericKD.2593985, Trojan.GenericKD.2859501, Backdoor.Fynloski
55.56%
Panda Antivirus
Trj/CI.A, Generic Suspicious, Generic Malware
55.56%
K7 AntiVirus
Riskware , Trojan , Password-Stealer
55.56%
The domain malwr.com has been seen to resolve to the following 2 IP addresses.
cuckoo-prime.shadowserver.org
November 29, 2014
3-22-244-46.a2b-internet.com
February 1, 2014
File downloads found at URLs served by malwr.com.
Google Analytics:
UA-30121810
Title:
“Malwr - Malware Analysis by Cuckoo Sandbox”
Description:
“Submit malware for free analysis with Cuckoo Sandbox”
SSL certificate subject:
CN=malwr.com, OU=Gandi Standard SSL, OU=Domain Control Validated
SSL certificate issuer:
CN=Gandi Standard SSL CA, O=GANDI SAS, C=FR
Facebook:
Likes: 129
Shares: 136
Comments: 38
Statistics above are for the previous month of March 2024.