Domain > alstom.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to alstom.com

MD5	A/V
69105950b2bb95843dea5937bea0e8f0	[HW32.CDB.5919] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ]
1623be5a046aa215162665c5067332e0	[HW32.CDB.Db63] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [Trojan-PSW.Win32.Tepfer.tybm] [Trojan.PWS.Tepfer!sA6n+JUlMF8] [UnclassifiedMalware] [Trojan.Packed.26581] [Backdoor:Win32/Kelihos.F] [W32/Trojan.YSDP-3009] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt_s.GNC] [Trojan.Win32.InfoStealer.aRBP]
2db060643b02ebffce2e3957e0b47311	[Packed.Win32.Katusha.3!O] [Backdoor.Hlux!w7qQeHPCTX8] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dsut] [BackDoor.Slym.13011] [Trojan[Backdoor]/Win32.Hlux] [VirTool:Win32/Obfuscator.WT] [Heur.Trojan.Hlux] [Win32/Kryptik.CBNK] [Trojan.Crypt_s] [W32/Kryptik.DJH!tr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.ABwI] [Win32/Trojan.337]
fe734b28009c7dd5389f64d72722bb21
d6a71b4d3098eab4dddab30fddbaef35	[FakeSecTool-FCX!D6A71B4D3098] [Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]
e85efae29ee5c9035251ae0bda01ad72
d400af99e1bfb95417e6b8d30f54d5f3
2c2371e95bb5d87ccd5d19a114492f70	[HW32.CDB.18af] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]
4ca7d150cc798011d5cb7d4c5be89f41	[HW32.CDB.7b74] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxcisy] [Backdoor.Win32.Hlux.diqm] [Backdoor.Hlux!ISaeAq95IMk] [TrojWare.Win32.Kryptik.BLUU] [BackDoor.Slym.14044] [TR/Kryptik.oeons] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GGV] [Trojan.Win32.Kryptik.BZDO]
315325f544912a68464bf38e3edf6371	[HW32.CDB.9e5e] [Backdoor/W32.Hlux.829456.H] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux!aauIqdu764w] [Trojan.FakeAV] [Kryptik.CDQY] [Backdoor.Win32.Hlux.dqyy] [Win32.Backdoor.Hlux.Lhdb] [UnclassifiedMalware] [Trojan.Packed.26581] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Backdoor.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aZvR] [Win32/Trojan.337]
2c05ffe297116df3062faac792c44c91	[HW32.CDB.B4b9] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Win32/Trojan.0de]
78e8f4e2522e120ec0ee53497c4c70b0	[HW32.CDB.511d] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dnoc] [BackDoor.Slym.13348] [Artemis!78E8F4E2522E] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Win32.SuspectCrc] [Crypt_s.GMK] [Trojan.Win32.Kryptik.BWUN] [Win32/Trojan.337]
14b43203abd10b893244fc8ac8d5f531	[HW32.CDB.F55f] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Win32/Trojan.0de]
56b02dc8b8072c1f787058a56eae64f0	[HW32.CDB.9b1c] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cwhrmp] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djkd] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHE] [Trojan.Win32.Kryptik.BZIX] [Win32/Trojan.ef7]

Whois

Property	Value
Email	registrar@nameshield.net
NameServer	NS0.POWER.ALSTOM.COM
Created	1998-01-20 00:00:00
Changed	2014-09-22 00:00:00
Expires	2015-09-24 00:00:00
Registrar	COREHUB, S.R.L.

DNS Resolutions

Date	IP Address
2013-04-18	94.247.97.149 (ClassC)
2013-10-15	82.147.23.140 (ClassC)
2014-06-18	82.147.23.140 (ClassC)
2018-07-31	54.154.10.236 (ClassC)
2019-12-12	52.49.219.136 (ClassC)
2024-04-11	52.101.68.39 (ClassC)
2024-04-11	52.101.73.12 (ClassC)
2024-04-11	52.101.68.0 (ClassC)
2024-04-11	52.101.73.22 (ClassC)
2024-04-11	52.101.68.10 (ClassC)
2024-04-11	52.101.73.24 (ClassC)
2024-04-11	52.101.68.3 (ClassC)
2026-01-31	104.18.2.12 (ClassC)

Subdomains

Date	Domain	IP
alsccmcmg001.alstom.com	2025-08-13	20.223.46.27
vip-smtpin.itc.alstom.com	2013-04-18	159.245.16.40
myworkplace-amer-cloud.alstom.com	2026-01-29	40.88.208.102
remoteassistance.alstom.com	2025-05-29	20.157.223.20
emea1-remoteassistance.alstom.com	2025-12-12	20.157.223.22
apac1-remoteassistance.alstom.com	2025-11-21	20.157.23.23
us1-remoteassistance.alstom.com	2022-07-12	20.157.23.23
emea2-remoteassistance.alstom.com	2025-11-24	20.157.223.23
apac2-remoteassistance.alstom.com	2025-11-29	20.157.23.29
us2-remoteassistance.alstom.com	2025-11-21	20.157.116.5
master-remoteassistance.alstom.com	2025-12-05	20.157.223.20
failover-remoteassistance.alstom.com	2025-11-13	20.157.223.21
pprd-chat-mygenerative-ai.alstom.com	2026-01-29	13.95.134.54
projects-foundation.alstom.com	2025-05-29	104.16.96.93
www.foundation.alstom.com	2025-11-26	104.18.2.12
3minutesstop.alstom.com	2025-11-14	104.18.3.12
vip-smtp.alstom.com	2014-06-18	159.245.16.220
ads.alstom.com	2023-12-04	81.31.28.93
www.partners.alstom.com	2025-11-25	81.92.94.54
transport.alstom.com	2025-11-22	194.133.58.131
services.transport.alstom.com	2024-08-09	13.110.52.11
passport.alstom.com	2023-08-25	20.50.135.18
www.alstom.com	2025-12-11	104.18.2.12
dmsv2marseille.smart-mobility.alstom.com	2023-08-25	20.126.168.119
mobility-analytics-dev.smart-mobility.alstom.com	2026-01-30	20.157.123.69

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]