Help RSS API Feed Maltego Contact                        

Domain > www.xha-mster.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://blog.crowdstrike.com/ironman-deep-panda-use...    
https://otx.alienvault.com/pulse/54d3b42411d408167...    
https://www.fireeye.com/blog/threat-research/2014/...    

Files that talk to www.xha-mster.com
MD5A/V
740561c8d5d2c658d2134d5107802a9d[W32.Clod9a4.Trojan.6251] [Trojan.FakeAV.Win32.315276] [Backdoor.Trojan]

Whois
PropertyValue
Email wendellom@yahoo.com
NameServer NS72.DOMAINCONTROL.COM
Created 2014-09-11 00:00:00
Changed 2014-09-11 00:00:00
Expires 2015-09-11 00:00:00
Registrar GODADDY.COM, LLC