Domain > directexe.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://vxvault.net/ViriList.php

http://www.clearskysec.com/dustysky/

https://otx.alienvault.com/pulse/568e917967db8c057...

https://otx.alienvault.com/pulse/56c374ab67db8c125...

Files that talk to directexe.com

MD5	A/V
7085040d4549e6917d049d1116bd2f23
11fe11b6d9b34a0bfe7c9d9349d224f2
1a5363e716d2d5b5df9acd76f74f079f	[WS.Reputation.1]
a3b126c0b20514a99ade679a5b169cfb
4e45b053f1e7136737e8f27c75328d51	[BehavesLike.Win32.Dropper.fc] [Trojan-Dropper.Small] [MSIL/Kryptik.CSK!tr]
b15d43fce325e043de385337afc4e480	[Exp.RTF.CVE-2012-0158] [Exploit-CVE2012-0158.g] [CVE120158] [Win32/Exploit.CVE-2012-0158.NE] [Exploit.Win32.CVE-2012-0158.j] [Exploit:W32/CVE-2012-0158.H] [Exploit.Rtf.CVE2012-0158] [HEUR_RTFMALFORME] [Exploit-CVE2012-0158.g] [Troj/DocDrop-DM] [CVE120158] [Exploit.CVE-2012-0158.a] [EXP/CVE-2012-0158] [RTF/Cve-2012-0158] [Win32.Trojan.Cve-2012-0158.Pcsj] [Exploit_c.ACAM] [virus.exp.20120158]
a95bec2563ff30d7e40855b67f592468	[O97M.Dropper.BR] [W97M/Downloader.ajk] [W97M.Downloader] [W97M/Downloader.ajk] [W97M/Downloader] [TrojanDownloader:O97M/Bartallex]
beaf24d5766b13c0481a386909bce859
8382df15b2a04b4b7763c31c3d46abea	[O97M.Dropper.BR] [W97M.Downloader]
b6713e226526c0f287cb808b23576fc0
b775ea1f9c3b3052d70ce1980e3460b1	[Exp.RTF.Shellcode.CV] [Exploit-CVE2012-0158!e] [Trojan.Mdropper] [TROJ_ARTIEF.YYUU] [Exploit.Rtf.116] [TROJ_ARTIEF.YYUU] [Exploit-CVE2012-0158!e] [Troj/20120158-A] [RTF/Cve-2012-0158] [Trojan.Win32.Exploit] [Exploit_c.ACRC] [virus.exp.20120158]
37e4b40648f6c34df59dd9f81a9e9936	[Exp.RTF.Shellcode.CV] [Trojan.Mdropper] [Exploit.Rtf.116] [HEUR_RTFMALFORME] [Exploit-CVE2012-0158!e] [Exploit-CVE2012-0158!e] [Exploit_c.ACRC] [virus.exp.20120158]
1b0258dc04b35b31606a738741d114a3	[Exp.RTF.Shellcode.CV] [Trojan.Mdropper] [Exploit.Rtf.116] [HEUR_RTFMALFORME] [Exploit-CVE2012-0158!e] [Exploit-CVE2012-0158!e] [Exploit_c.ACRC] [virus.exp.20120158]
18af8a66c5a802c626a48dd55f3169e5	[Exp.RTF.Shellcode.CV] [Exploit.Rtf.116] [HEUR_RTFMALFORME] [Exploit-CVE2012-0158!e] [Exploit-CVE2012-0158!e] [Exploit_c.ACRC] [virus.exp.20120158]
da319e8a5e1de7bde2b423230a3cb9a3	[W97M/Downloader.act] [Trojan.Script.MLW.dslepv] [W97M/Downloader.act] [Troj/DocDl-PU] [HEUR/Macro.Downloader] [HEUR.VBA.Trojan]
03dfaa7b38468e7f418e1edac766946f	[Troj/MSIL-DKN] [MSIL/Injector.KHX!tr]
803b3f4810df2dbe8942a551cbf1d30b
82b1c5d469192858721c0e37a9984b54	[Exp.RTF.CVE-2012-0158] [Exploit.Win32.CVE-2012-0158.j] [HEUR_RTFMALFORME] [virus.exp.20120158]
71dee6d0f612f2e898a981ceb4238ba9
7cca82bf2cbec6574a55fd64f5c911bb

Whois

Property	Value
Email	FE3D5B2F44BA46D2A486B2F3F7B3B0FE.PROTECT@WHOISGUARD.COM
NameServer	MAY.NS.CLOUDFLARE.COM
Created	2015-02-09 00:00:00
Changed	2015-02-17 00:00:00
Expires	2016-02-09 00:00:00
Registrar	ENOM, INC.