VirusTotal Analysis
Dominio
actionaid.org
Registrar
N/AMotori AV Recap
0
Malevolo
0
Sospetto
34
Non rilevato
57
Innocuo
Acronis
[harmless] clean
0xSI_f33d
[undetected] unrated
Abusix
[harmless] clean
ADMINUSLabs
[harmless] clean
Axur
[undetected] unrated
ChainPatrol
[undetected] unrated
Criminal IP
[undetected] unrated
AILabs (MONITORAPP)
[harmless] clean
AlienVault
[harmless] clean
alphaMountain.ai
[undetected] unrated
AlphaSOC
[undetected] unrated
Antiy-AVL
[harmless] clean
ArcSight Threat Intelligence
[undetected] unrated
AutoShun
[undetected] unrated
Bfore.Ai PreCrime
[undetected] unrated
BitDefender
[harmless] clean
Bkav
[undetected] unrated
Blueliv
[harmless] clean
Certego
[harmless] clean
Chong Lua Dao
[harmless] clean
CINS Army
[harmless] clean
Cluster25
[undetected] unrated
CRDF
[harmless] clean
CSIS Security Group
[undetected] unrated
Snort IP sample list
[undetected] unrated
CMC Threat Intelligence
[harmless] clean
CTX AI
[harmless] clean
Cyan
[undetected] unrated
Cyble
[harmless] clean
CyRadar
[harmless] clean
DNS8
[harmless] clean
Dr.Web
[harmless] clean
Ermes
[undetected] unrated
ESET
[harmless] clean
ESTsecurity
[harmless] clean
EmergingThreats
[harmless] clean
Emsisoft
[harmless] clean
Forcepoint ThreatSeeker
[harmless] clean
Fortinet
[harmless] clean
G-Data
[harmless] clean
GCP Abuse Intelligence
[undetected] unrated
Google Safebrowsing
[harmless] clean
GreenSnow
[harmless] clean
GreyNoise
[undetected] unrated
Gridinsoft
[undetected] unrated
Guardpot
[undetected] unrated
Heimdal Security
[harmless] clean
Hunt.io Intelligence
[undetected] unrated
IPsum
[harmless] clean
Juniper Networks
[harmless] clean
Kaspersky
[harmless] clean
LevelBlue
[undetected] unrated
Lionic
[harmless] clean
Lumu
[undetected] unrated
MalwarePatrol
[harmless] clean
MalwareURL
[undetected] unrated
Malwared
[harmless] clean
Mimecast
[undetected] unrated
Netcraft
[harmless] clean
OpenPhish
[harmless] clean
Phishing Database
[harmless] clean
PhishFort
[undetected] unrated
PhishLabs
[undetected] unrated
Phishtank
[harmless] clean
PREBYTES
[harmless] clean
PrecisionSec
[undetected] unrated
Quick Heal
[harmless] clean
Quttera
[harmless] clean
SafeToOpen
[undetected] unrated
Sansec eComscan
[undetected] unrated
Scantitan
[harmless] clean
Seclookup
[harmless] clean
SecureBrain
[undetected] unrated
SOCRadar
[undetected] unrated
Sophos
[harmless] clean
StopForumSpam
[harmless] clean
Sucuri SiteCheck
[harmless] clean
ThreatHive
[harmless] clean
URLhaus
[harmless] clean
URLQuery
[undetected] unrated
Viettel Threat Intelligence
[harmless] clean
VIPRE
[undetected] unrated
VX Vault
[harmless] clean
ViriBack
[harmless] clean
Webroot
[harmless] clean
Yandex Safebrowsing
[harmless] clean
ZeroCERT
[harmless] clean
desenmascara.me
[harmless] clean
securolytics
[harmless] clean
Xcitium Verdict Cloud
[harmless] clean
ZeroFox
[undetected] unrated
0xSI_f33d
undetected (unrated)
Axur
undetected (unrated)
ChainPatrol
undetected (unrated)
Criminal IP
undetected (unrated)
alphaMountain.ai
undetected (unrated)
AlphaSOC
undetected (unrated)
ArcSight Threat Intelligence
undetected (unrated)
AutoShun
undetected (unrated)
Bfore.Ai PreCrime
undetected (unrated)
Bkav
undetected (unrated)
Cluster25
undetected (unrated)
CSIS Security Group
undetected (unrated)
Snort IP sample list
undetected (unrated)
Cyan
undetected (unrated)
Ermes
undetected (unrated)
GCP Abuse Intelligence
undetected (unrated)
GreyNoise
undetected (unrated)
Gridinsoft
undetected (unrated)
Guardpot
undetected (unrated)
Hunt.io Intelligence
undetected (unrated)
LevelBlue
undetected (unrated)
Lumu
undetected (unrated)
MalwareURL
undetected (unrated)
Mimecast
undetected (unrated)
PhishFort
undetected (unrated)
PhishLabs
undetected (unrated)
PrecisionSec
undetected (unrated)
SafeToOpen
undetected (unrated)
Sansec eComscan
undetected (unrated)
SecureBrain
undetected (unrated)
SOCRadar
undetected (unrated)
URLQuery
undetected (unrated)
VIPRE
undetected (unrated)
ZeroFox
undetected (unrated)
TXT
DiLMKRHJZA775/m6z7rwdrbiX8vXd3ycYbmCvr6zn139krOD/SpanPQZFLtdrODo81GY4b75uDZktX8oD2vFig==
TXT
google-site-verification=X2eSceVfyYAokn34VP3UENIK_rZs5rmsWWRsOguCNew
MX
eu-smtp-inbound-2.mimecast.com
TXT
google-site-verification=DyFt22IlSUDusUPuHrVBQPffed_GRiKLMu1-7I1SF7I
TXT
google-site-verification=yY0Sc6yjQERb1cFVNtvB9Qh2h6u5m5bnyPjipAFlKvo
TXT
mailru-verification: 5f09e509bd10122a
TXT
N8QAFQGJGXSS2MIX2Y29KTJUMBDVB6MZIIP454CO
TXT
atlassian-domain-verification=6MKtM9yKP7FayXXdjTM37bFJEjnJ5u/bZ8h2ji2q22nYj2JCgqZQPUAyP0DQFn2y
TXT
adobe-idp-site-verification=6a668b7f61546d9ec4b19fcca3d0fb9389e568f8889684c0ba758968ccdf9a29
MX
eu-smtp-inbound-1.mimecast.com
TXT
vn4eo3c0827m6k8aihc54tffu3
TXT
miro-verification=ba3ff0bf612763e603ed2d43ab4b9609db3c58b7
SOA
davina.ns.cloudflare.com
A
95.216.189.127
TXT
1002o4q9feaqgob1b3vq6r7dpe
NS
rodrigo.ns.cloudflare.com
TXT
google-gws-recovery-domain-verification=70179934
NS
davina.ns.cloudflare.com
TXT
MS=ms76735538
TXT
brevo-code:1677de4d425e122acc3e97d0e483da85
TXT
apple-domain-verification=U4xwIp25Mrmf7oMw
TXT
google-site-verification=MjzzD_7fKVQZNtl_lV0uHNOU4bYWTb8wI7jmROT6J5M
TXT
v=spf1 ip4:195.130.217.0/24 ip4:91.220.42.0/24 ip4:146.101.78.0/24 ip4:207.82.80.0/24 ip4:213.167.81.0/25 ip4:193.7.207.0/25 ip4:213.167.75.0/25 ip4:185.58.85.0/24 ip4:185.58.86.0/24 ip4:193.7.206.0/25 ip4:147.28.36.0/24 include:_spfprod.ngpvan.com includ
TXT
d5ulu0ehlpvafi99aa7uqkp2l8
Emesso da:
R12
Intestato a:
www.actionaid.org
Valido dal:
2026-04-19 00:08:42
2026-04-19 00:08:42
Valido fino al:
2026-07-18 00:08:41
2026-07-18 00:08:41
Infostealer analysis by HudsonRock
188
π§ Dispositivi infetti
48
π Utenti compromessi
11
π§βπΌ Dipendenti compromessi
0
π Password aziendali
0
π Password users
Nessuna famiglia di stealer rilevata.
https://outlook.actionaid.org/owa/auth/logon.aspx
9
https://adfs.actionaid.org/adfs/ls/
2
https://alps.actionaid.org/
2
https://hive.actionaid.org/
1
https://outlook.actionaid.org/
1
https://****.actionaid.org/****/**
1
https://hive.actionaid.org
32
https://stories.actionaid.org/login.php
8
http://learning.actionaid.org/login/signup.php
5
http://network.actionaid.org/cacti/graph_view.php
5
http://www.actionaid.org/user
3
https://*******.actionaid.org
3
https://****.actionaid.org/
3
https://*******.actionaid.org/*****.***
3
http://********.actionaid.org/*****/*****.***
2
http://********.actionaid.org/*****/***************.***
2
http://*******.actionaid.org
2
https://****.actionaid.org
2
https://*******.actionaid.org
2
https://*******.actionaid.org/*****.***
2
http://*******.actionaid.org/
1
https://********.actionaid.org/
1
https://*******.actionaid.org/
1
https://*******.actionaid.org
1
https://*******.actionaid.org/**/****/*****
1
https://********.actionaid.org
1
https://********.actionaid.org/********/**.****.********.************/*****.****
1
Nessun antivirus rilevato.