Help RSS API Feed Maltego Contact

Domain > unisers.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?

Most users have voted this as MALICIOUS

Reports

http://www.sophos.com/en-us/medialibrary/PDFs/tech...

https://blogs.mcafee.com/mcafee-labs/targeted-atta...

https://otx.alienvault.com/pulse/5501f41813432a05a...

http://researchcenter.paloaltonetworks.com/2016/06...

https://www.sophos.com/en-us/medialibrary/PDFs/tec...

Files that talk to unisers.com

MD5	A/V
429f36d9eabfa89f9803f048f0fc14eb
3c0ed13b0028097f4bd05a73bf539e8e
8ef1267f068df5411578efebeac8a485
8230f8983318d678eec3c930e3f39252	[BDS/Plugx.445358] [TrojanDownloaderAPT.Drixed.r5] [Backdoor*Win32/Plugx.L]
a0aa06a2c2ba23d939892174c922b32a

Whois

Property	Value
Email	bitumberls@163.com
NameServer	NS2.EZDNSCENTER.COM
Created	2014-03-12 00:00:00
Changed	2014-03-12 00:00:00
Expires	2015-03-12 00:00:00
Registrar	SHANGHAI MEICHENG TE

DNS Resolutions

Date	IP Address
2014-04-21	123.254.104.32 (ClassC)
2014-11-09	123.254.104.56 (ClassC)
2015-03-01	-
2017-05-31	114.147.123.21 (ClassC)
2017-07-31	153.251.161.122 (ClassC)
2017-08-16	153.251.252.64 (ClassC)
2017-10-19	153.148.19.155 (ClassC)
2017-11-17	153.148.23.221 (ClassC)
2018-08-02	153.148.108.225 (ClassC)
2018-08-29	153.148.104.226 (ClassC)
2018-10-03	114.147.100.59 (ClassC)
2018-11-02	153.148.100.79 (ClassC)
2019-02-20	153.158.115.67 (ClassC)
2019-04-02	153.250.171.0 (ClassC)
2019-07-03	72.52.4.119 (ClassC)
2025-04-03	217.26.63.20 (ClassC)

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information