Help RSS API Feed Maltego Contact                        

Domain > casper.bacguarp.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://researchcenter.paloaltonetworks.com/2015/05...    
https://otx.alienvault.com/pulse/5544b973b45ff5392...    

Files that talk to casper.bacguarp.com
MD5A/V
d9bc8bb9755d9927fa354b13f5b1c8e0
188bc7e4830572e60fc7b193d4ead4af[W32/Zegost.DFQK!tr.bdr] [SHeur4.CGOB] [Trojan.Dropper] [Backdoor.Win32.Zegost.dfqk] [Backdoor*Win32/Plugx.L]
a3e5c4511c45973dff7dc146546407de
fa8788448a2ca47aa7db9beb694097cf
39416403e2e065e87b18d4ecbccc6a6d
b7fa32a8cd1988e61093d96600966831
d4fde7aaa7d72afd259367f3eccba3f8
4e7ff0c5078c3a71c0a60e222aa1faa4
f242be978bba670b03d3df68a30d01c1[W32/Trojan.YOQT-8430] [Win32/Korplug.DD] [W32/Zegost.AFEO!tr.bdr] [Backdoor.Win32.Zegost] [Backdoor.Win32.Zegost.afeo] [0x579e432e] [Backdoor.Zegost]
2d873fed856501948470f284f1aeea0f
652d33dd59e5dbd6a191476efb086654
b85e318e59610846ffbfb1b7f76d31d7
6813d88b84933e5ea230294ddfadbc6f
4ce325995895f1511f1f3abc15cf2124
d75a79cfa13becab755e45cee246d998
ff3a9950147507743c312eec7e2a29ae
cf27af3c83454708367397ebf622d1d9
690b9e8a545c2dca2a49dce2a27fba07
4faf142d37ec6673c17df4654838920a
ba42b84391d2643b2956ca0059b01324[W32/Trojan.VPYJ-9368] [Win32/Korplug.DD] [W32/Zegost.AFDM!tr.bdr] [Trojan.SuspectCRC] [Backdoor.Win32.Zegost.afdm] [Trojan.Zbot] [Backdoor.Zegost]

Whois
PropertyValue
Email wedgsdva@hotmail.com
NameServer NS2FWZ.NAME.COM
Created 2011-06-08 00:00:00
Changed 2014-05-12 00:00:00
Expires 2015-06-08 00:00:00
Registrar NAME.COM, INC.