Help RSS API Feed Maltego Contact                        

Domain > mol-government.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://blog.safebit.mn/2015/11/plugx.html    
https://otx.alienvault.com/pulse/565da40d4637f2388...    

Files that talk to mol-government.com
MD5A/V
9b5af6505236a409c6802116b1f8722f[BDS/Pcclient.dtzu] [Backdoor.425963DFFA00B6A9] [Win32/TrojanDropper.Binder.NBM] [W32/PcClient.DTZU!tr.bdr] [Trojan*Win32/Sisproc!gmb] [W32/Risk.JNAV-0900] [W32/MalwareS.AFUB] [Backdoor.Win32.PcClient] [Trojan.Cosmu.Win32.2867] [Backdoor.Win32.Sykipot.ge] [Mal/Behav-103] [BackDoor.PcClient.6520]

Whois
PropertyValue
Email hlemonk@163.com
NameServer NS2.ORAY.NET
Created 2007-04-05 00:00:00
Changed 2014-03-18 00:00:00
Expires 2015-04-05 00:00:00
Registrar 35 TECHNOLOGY CO., L

DNS Resolutions
DateIP Address
2018-10-3158.158.177.102 (ClassC)
2018-11-0154.65.172.3 (ClassC)
2020-03-0592.63.103.70 (ClassC)
2024-11-07104.155.138.21 (ClassC)
2025-02-01107.178.223.183 (ClassC)
2025-04-2734.132.102.6 (ClassC)
2025-06-0234.136.111.81 (ClassC)
2025-06-2434.159.223.43 (ClassC)
2025-08-0334.41.139.193 (ClassC)

Subdomains
DateDomainIP
ns1.mol-government.com2024-09-14104.155.138.21
ns2.mol-government.com2014-09-06198.200.50.179
www2.mol-government.com2019-12-1592.63.103.70
ns3.mol-government.com2025-01-16107.178.223.183
nd.mol-government.com2025-01-11104.155.138.21
task.mol-government.com2015-08-0123.238.137.49
mail.mol-government.com2019-09-0692.63.103.70
news.mol-government.com2025-01-09107.178.223.183
www.mol-government.com2015-06-07198.200.51.77
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information