Help RSS API Feed Maltego Contact                        

Domain > winsupdate.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
https://www.fireeye.com/blog/threat-research/2013/...    

Files that talk to winsupdate.com
MD5A/V
d405b4874813c0d60663ed30f1f831b4[Exploit-MSWord!D405B4874813] [Shellcode.B] [Exploit.OLE2.CVE-2012-1856.a] [HEUR_OLEXP.A] [Troj/20120158-S] [DOC/Ratbolo] [Exploit.Win32.OLE.78] [Hack.Exploit.CVE-2012-0158.d] [MSOffice/CVE20121856.A!exploit]

Whois
PropertyValue
Email BINALAKSHMINP@YAHOO.COM
NameServer DNS2.REGISTRAR-SERVERS.COM
Created 2009-07-01 00:00:00
Changed 2014-03-07 00:00:00
Expires 2017-07-01 00:00:00
Registrar ENOM, INC.