Help RSS API Feed Maltego Contact                        

Domain > adawareblock.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://pwc.blogs.com/files/tactical-intelligence-b...    
https://github.com/fireeye/iocs/tree/master/APT28    
https://otx.alienvault.com/pulse/553ab37ab45ff5153...    

Files that talk to adawareblock.com
MD5A/V
80841ab9fea0fb60908bb5e679546aa5
021dcf398434bdb963049d2c5385a24f[Exploit.ComObj.CVE-2012-0158.hzuf] [Shellcode.A] [TROJ_MDROPR.JCA] [Exp/20120158-A] [DOC:Attention.APT-Bait.MaliciousFile/Heur!1.9DC3] [MSOffice/CVE20120158.fam!exploit] [Luhe.Exploit.RTF.CVE-2012-0158.F]

Whois
PropertyValue
Email sammyguy@mail.com
NameServer NS2.CARBON2U.COM
Created 2013-05-08 00:00:00
Changed 2014-04-30 00:00:00
Expires 2015-05-08 00:00:00
Registrar WEB COMMERCE COMMUNI