Help RSS API Feed Maltego Contact                        

Domain > a.pomf.cat

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
https://portal.cybersecurity.mo.gov/util/url_black...    
https://www.proofpoint.com/us/threat-insight/post/...    

Files that talk to a.pomf.cat
MD5A/V
c94802801bf00b2c9d7f2abc8c8f0269[W97M.Downloader.BFV] [W97M.Downloader.BFV] [W97M/None] [W97M.Downloader.BFV] [W97M.Downloader.BFV] [W97M.Downloader.BFV] [W97M.Downloader.BFV]
818ebf1bdeb2015d53787a92747b833b[MSWord/Downloader.s] [HEUR.VBA.Trojan.d]
e916d678f025ef30920ee073bc8526c9
38b51817bfe719bdc7b3b2fd5e728651
0eac86874f98cd5abcef79cefc1f6464
a1d7927d55cd71bb2f44de28d3dc4d8d[Win32.Trojan.Dldr.Lmuh] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [WM/TrojanDownloader.BYX!tr]
adc0629f20d68b7ed5afbff6548e2b7c
f6b59046661f9584a83b44e715b3cc32
b119c125e2fa8627a8ce09ecfdcc5e07
46d8bb7363d4642f42a66968095ebbe2
2d9617cb4fb6702ed67dc65db29c9e4b
39c5b7d955d1fca8b28d5d55556a0557
ab7d5557024d5b8c4e62878cd03f0b24[Trojan.Doc.Downloader.LR] [Trojan.Doc.Downloader.LR] [W97M.Downloader] [W2KM_DLOADR.YYSPW] [W97M.S.Downloader.571392.A[h]] [Trojan.Doc.Downloader.LR] [Trojan.Doc.Downloader.LR] [W2KM_DLOADR.YYSPW] [Trojan.BDLU-2] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [W2KM/Downloader] [Trojan.Doc.Downloader.LR] [WM/TrojanDownloader.BYX!tr]
74c8d5c6cf4496b44cc96b75aaeb82f4[W2KM_DLOADR.YYSPW] [Troj/DocDl-CQP] [W2KM_DLOADR.YYSPW] [Trojan.RVVC-31] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [W2KM/Downloader] [WM/TrojanDownloader.BYX!tr]
d9dd67efcd47b9e22011a28f1b25525c[W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [W2KM/Downloader] [W97M.Downloader.BLT] [WM/TrojanDownloader.BYX!tr]
bad2c893c0c654628b5f27d0808f81d2[W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M/Downloader.bbn] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M/Downloader.bbn] [MSWord/Downloader.s] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [WM/TrojanDownloader.BYX!tr]
4fb969c01682eaa1fedcae26d3960acc
fe8ded66691895b1470424fc0465885f
7ea3a5dbe57c43aad09a2d64776db412[MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [WM/TrojanDownloader.BYX!tr]
031632cf55a245ac494785e8ee51fd65[MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [WM/TrojanDownloader.BYX!tr]

Whois
PropertyValue
NameRobin Von Ruden
Organization Pomf LLC
Email 493ba1c744ecc4838264f4737466b766-4607795@contact.gandi.net
Address Obfuscated whois Gandi-63-65 boulevard Massena
Zip Code 75013
City Obfuscated whois Gan
Country FR
Phone +33.170377666
Fax +33.143730576
NameServer ns2.servernap.com
Created 2015-06-09 00:46:11
Expires 2016-06-09 00:46:11
Registrar GANDI SAS

DNS Resolutions
DateIP Address
2015-07-09104.31.84.54 (ClassC)
2015-07-15104.31.85.54 (ClassC)
2016-03-2669.65.17.35 (ClassC)
2016-03-2666.55.92.21 (ClassC)
2019-09-0566.55.90.17 (ClassC)
2025-12-1569.39.225.3 (ClassC)

Port 80
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information