Help
RSS
API
Feed
Maltego
Contact
Domain > fast.bacguarp.com
×
Welcome!
Right click nodes and scroll the mouse to navigate the graph.
×
This indicator is
referenced
in AlienVault OTX pulse ""
Is this malicious?
Yes
No
Most users have voted this as
MALICIOUS
Reports
http://researchcenter.paloaltonetworks.com/2015/05...
https://otx.alienvault.com/pulse/5544b973b45ff5392...
https://raw.githubusercontent.com/citizenlab/malwa...
Files that talk to fast.bacguarp.com
MD5
A/V
5daf1bb24ef109a1713bf22ab2315fe9
91b5cf6b598582b8a6f304f07b947f89
d94cbc69c86cec9f4e008183b20556fc
e85e2dcc9bae7457a0a3dffffe2e50c1
c116cd083284cc599c024c3479ca9b70
[
BDS/Plugx.A.136
] [
Trojan.BrowseBan.536
] [
Win32/Korplug.AM
] [
W32/Korplug.AM
] [
Backdoor.Win32.Plugx
] [
Backdoor.Win32.Gulpix.lh*Backdoor.Win32.Gulpix.ch
] [
Backdoor*Win32/Plugx.A
] [
Backdoor.Gulpix
]
D4F0E4C8E4895D2DDC080C3D5BB42D38
b139fbf28cc986079e0371c86fb8610b
5a8f4df978d002f8b1a3fe5d3fa4fce2
2d55dd4b9b5e4043450de52deabd3461
ac157fff310a45cba1933c432a22bdf7
[
W32/Trojan.ASHA-7465
] [
Trojan.Proxy.25479
] [
Win32/Korplug.AS
] [
W32/Luder.AS!worm
] [
Backdoor.Win32.Plugx
] [
Worm.Win32.Luder.bqup
] [
Backdoor*Win32/Plugx.A
] [
Troj/Plugx-J
] [
Backdoor.Gulpix
]
42fba80f105aa53dfbf50aeba2d73cae
[
Exp.RTF.CVE-2012-0158
] [
Trojan.Mdropper
] [
Exploit.MSWord.CVE-2012-0158.ay
] [
DOC:Exploit.CVE-2012-0158!1.9DBA
] [
UnclassifiedMalware
] [
Exploit.CVE2012-0158.16
] [
HEUR_RTFEXP.A
] [
Exploit-CVE2012-0158.h!rtf
] [
Exp/20120158-A
] [
Exploit.CVE-2012-0158.a
] [
EXP/CVE-2012-0158.A.1765
] [
Trojan[Exploit]/MSWord.CVE-2012-0158.ay
] [
Exploit:Win32/CVE-2012-0158
] [
Exploit/Cve-2012-0158
] [
Exploit-CVE2012-0158.h!rtf
] [
Word.Exploit.Cve-2012-0158.Pegh
] [
Exploit.MSWord.CVE-2012-0158
] [
Exploit_c.ACJH
]
1d3c184dde74ac4ea8a25e57a40c6ce4
Whois
Property
Value
Email
wedgsdva@hotmail.com
NameServer
NS2FWZ.NAME.COM
Created
2011-06-08 00:00:00
Changed
2014-05-12 00:00:00
Expires
2015-06-08 00:00:00
Registrar
NAME.COM, INC.