Domain > waupacafoundry.com

More information on this domain is in AlienVault OTX

Files that talk to waupacafoundry.com

MD5	A/V
210b6e761b4cb7d71e862606c0f28846	[Artemis!210B6E761B4C] [HB_Pushdo-1] [Trojan.Win32.Jorik.Cutwail.prs] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Dropper/Win32.Vidro] [W32/Pushdo.YOY!tr] [SHeur4.BNRB]
a472f9d1a78fa6cb3eb6896d9c319726	[TrojanDownloader.Cutwail.bs] [Backdoor.Bot] [Riskware] [Trojan.Win32.Pushdo.btelgd] [WS.Reputation.1] [BKDR_PUSHDO.FC] [Backdoor.Win32.Pushdo.qgz] [Backdoor.Pushdo!+jNmAzmKgNc] [UnclassifiedMalware] [BackDoor.Bulknet.893] [Win32.HeurC.KVMH004.a.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [W32/Backdoor.RMSR-3833] [Trojan.CryptHWZ] [W32/Pushdo.QGZ!tr.bdr] [Crypt.CHWZ] [Trj/Pushdo.L]
5e6ffe3abdc1caa35ee40b0a1908bf4c	[Win32/Tnega.XfYFUAD] [BackDoor.Bulknet.967] [Win32/Injector.AIRV] [W32/Injector.AHLB!tr] [Trojan-Downloader.Win32.Karagany] [Trojan.Crypt.NKN] [PWS-Zbot-FAQD!5E6FFE3ABDC1] [TrojanDownloader*Win32/Cutwail.BS] [winpe/Kryptik.CBZD] [TROJ_FIDOBOT.SM0] [Trojan.Buzus]
6bd3a60b66efb707e894f2717cccf17b
34961ffc0f75d89da0b9464a4c7a02b1	[Backdoor.Win32.Pushdo.qag] [BackDoor.Bulknet.893] [Win32.Heur.KVMF58.hy.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [Trojan-Downloader.Win32.Cutwail]
3be8faf7b111dadde0d8e17b428125b0	[Backdoor/W32.Androm.39936.C] [Trojan.Androm.vsg.cw4] [Trojan.Inject] [Trojan/Kryptik.bdbi] [Trojan.Win32.Androm.btkkib] [WS.Reputation.1] [TROJ_CUTWAIL.PQP] [Backdoor.Win32.Androm.vsg] [Backdoor.Androm!mmztmFLZ69E] [UnclassifiedMalware] [BackDoor.Bulknet.958] [Win32.HeurC.KVMH004.a.(kcloud)] [TrojanDownloader:Win32/Cutwail] [Client-SMTP.39936] [W32/Backdoor.DIPS-1259] [Backdoor.Androm] [Virus.Win32.Cryptor] [W32/Androm.VSG!tr.bdr] [Win32/Cryptor] [W32/Palevo.GEZ.worm]
7e265cfaa3a92f9b07c518dcbe577262	[Crypt_s.BOF] [TrojanDownloader*Win32/Cutwail.BS]
e3346adfbe598fe8dacfcf07debecc50	[TrojanDownloader*Win32/Cutwail.BS]
b4f310f5cc7b9cd68d919d50a8415974	[HW32.Laneul.zqwg] [Trojan/W32.Jorik.40448.U] [TrojanDownloader.Cutwail] [Trojan] [Trojan.Win32.Jorik.byfbdv] [W32.Pilleuz] [Win32/Cutwail.RfLHODC] [TROJ_SPNR.0BGS13] [Trojan.Win32.Jorik.Cutwail.prm] [Trojan.Cutwail!Vn3uTMMB5CM] [UnclassifiedMalware] [BackDoor.Bulknet.958] [TR/Graftor.103216] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Client-SMTP.40448.A] [Dropper/Win32.Vidro] [BScope.Trojan.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.YOY!tr] [SHeur4.BNRB] [Trj/CI.A] [TrojanDownloader*Win32/Cutwail.BS]
622bf7ba2317ae03b0682a650bac03d8	[TrojanDownloader.Cutwail] [Cutwail-FBPN!622BF7BA2317] [W32.Pilleuz] [Pushdo.I] [TROJ_SPNR.1ADR13] [Backdoor.Win32.Pushdo.pyz] [Backdoor.Pushdo!kokJ8DxObyw] [Heur.Suspicious] [BackDoor.Bulknet.893] [Win32.Hack.Pushdo.p.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor.Win32.U.Pushdo.41472] [Backdoor/Win32.Pushdo] [W32/Backdoor.PJEO-2224] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.PYZ!tr.bdr] [SHeur4.BGUF] [Trj/OCJ.D]
152fbf67adaa5455ac89003f69528244	[BackDoor-FAYA!152FBF67ADAA]
b7d2d2a8a4d14b8b74cc88009e28ae66	[Trojan/W32.Small.41984.VJ] [Backdoor.Win32.Pushdo!O] [TrojanDownloader.Cutwail.BS5] [Downloader-FKK!B7D2D2A8A4D1] [Suspicious.Cloud.5] [Pushdo.J] [BKDR_PUSHDO.SMP] [Backdoor.Win32.Pushdo.pvu] [Trojan.Win32.Pushdo.cramya] [Backdoor.Win32.Pushdo.41984.B] [Trojan.Inject1.19222] [Backdoor/Pushdo.yv] [Win32.Hack.Pushdo.p.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [Backdoor.Pushdo] [Win32/Wigon.PH] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.PVU!tr.bdr]
bf4fa138741ec4af0a0734b28142f7ae	[Crypt2.BLVD] [TrojanDownloader*Win32/Cutwail.BS]
8a81337b6ec2ac603454237cba5ae8e4	[Cutwail-FCJX!8A81337B6EC2]
357423154cf2deb27cea8219633158ca	[TrojanPWS.Zbot.AZ4] [Cutwail-FBYD!357423154CF2] [Trojan.PPush] [Trojan] [Trojan/Kryptik.bcej] [Trojan.Win32.Bulknet.bsbxmg] [W32.Pilleuz] [Win32/Cutwail.CeCCXcD] [Backdoor.Win32.Pushdo.qfj] [Backdoor.Pushdo!X+87TMMiffo] [Troj/Cutwail-AM] [TrojWare.Win32.Kryptik.BAVK] [BackDoor.Bulknet.893] [BKDR_PUSHDO.NIL] [Backdoor/Pushdo.adm] [TrojanDownloader:Win32/Cutwail.BS] [W32/Backdoor.WNGO-5843] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan.CryptDTE] [W32/Pushdo.PYD!tr.bdr] [Crypt.CDTE] [Trj/CI.A]
c12a0f14324014f4c4d5d070ddc33d33
89c64a4ee7b13dd2dbdcf4a05f71312a	[TrojanDownloader*Win32/Cutwail.BS]
a423bbddf78450753f1a239711408b91	[Crypt_c.ABJD] [TrojanDownloader*Win32/Cutwail.BS]
98428f0dd3514edeb4f14e4d14cccdb3
63e2d975b940af1a4ae7c80f7f6f7052	[TrojanDownloader*Win32/Cutwail.BS]

Whois

Property	Value
NameServer	NS78.DOMAINCONTROL.COM
Created	1996-03-09 00:00:00
Changed	2013-09-01 00:00:00
Expires	2023-03-10 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2013-07-19	71.13.131.168 (ClassC)
2025-10-16	40.122.65.162 (ClassC)

HTTP/1.1 200 OKContent-Length: 47686Content-Type: text/html; charsetutf-8Date: Tue, 15 Aug 2023 21:15:11 GMTServer: Microsoft-IIS/10.0Cache-Control: privateSet-Cookie: CurrentContacteb5479d0-27d9-4f3b

!DOCTYPE html>html langen>head>    !-- Google Tag Manager -->    script>        (function (w, d, s, l, i) {            wl  wl || ; wl.push({                gtm.start:                    new Date().getTime(), event: gtm.js            }); var f  d.getElementsByTagName(s)0,                j  d.createElement(s), dl  l ! dataLayer ? &l + l : ; j.async  true; j.src                     https://www.googletagmanager.com/gtm.js?id + i + dl; f.parentNode.insertBefore(j, f);        })(window, document, script, dataLayer, GTM-MZBSJQD);/script>    !-- End Google Tag Manager -->    meta http-equivContent-Type contenttext/html; charsetUTF-8 />    meta nameviewport contentwidthdevice-width, initial-scale1, shrink-to-fitno>    meta nameformat-detection contenttelephoneyes>    title>home/title>    link relshortcut icon typeimage/png href/Content/images/favicon/favicon.ico />    link relapple-touch-icon-precomposed sizes57x57 href/Content/images/favicon/apple-touch-icon-57x57.png />    link relapple-touch-icon-precomposed sizes114x114 href/Content/images/favicon/apple-touch-icon-114x114.png />    link relapple-touch-icon-precomposed sizes72x72 href/Content/images/favicon/apple-touch-icon-72x72.png />    link relapple-touch-icon-precomposed sizes144x144 href/Content/images/favicon/apple-touch-icon-144x144.png />    link relapple-touch-icon-precomposed sizes60x60 href/Content/images/favicon/apple-touch-icon-60x60.png />    link relapple-touch-icon-precomposed sizes120x120 href/Content/images/favicon/apple-touch-icon-120x120.png />    link relapple-touch-icon-precomposed sizes76x76 href/Content/images/favicon/apple-touch-icon-76x76.png />    link relapple-touch-icon-precomposed sizes152x152 href/Content/images/favicon/apple-touch-icon-152x152.png />    link relicon typeimage/png href/Content/images/favicon/favicon-196x196.png sizes196x196 />    link relicon typeimage/png href/Content/images/favicon/favicon-96x96.png sizes96x96 />    link relicon typeimage/png href/Content/images/favicon/favicon-32x32.png sizes32x32 />    link relicon t

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > waupacafoundry.com

Is this malicious?

Files that talk to waupacafoundry.com

Whois

DNS Resolutions

Port 443