Help RSS API Feed Maltego Contact                        

Domain > gwas.perl.sh

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://securelist.com/blog/68978/whos-really-sprea...    
https://otx.alienvault.com/pulse/54f7805313432a7aa...    

Files that talk to gwas.perl.sh
MD5A/V
357f5d4147c8247646b4d173ee1223c9[W32.Qvod.E] [Trojan.Dropper] [W32.SillyDC] [Patched.ERB] [PE_BEGCBUG.A] [Trojan.KillAV-246] [Trojan.Win32.Patched.la] [Trojan.Win32.Patched.caxfcr] [PE:Hack.Win32.Injector.a!1075356144] [W32/Geral-A] [TrojWare.Win32.Patched.la] [Trojan.Inject1.10883] [Trojan.Patched.Win32.88102] [Dropper-FCT!357F5D4147C8] [TR/Injector.daft] [Trojan/Win32.Patched.la] [Win32.LoaderWsl.rc.9216] [VirTool:Win32/Injector.EG] [Win-Trojan/Patched.KP] [BScope.Trojan.Dropper.we] [Trojan.Win32.Daws.a] [Trojan-Dropper.Win32.Daws] [W32/Swisyn.MN!tr] [Virus.Win32.Patched.$la] [Trojan.Win32.Patched!O] [PE:Win32.Wsl.b!1590038]
450D64E95187117DFBE507681F2CBDC2

DNS Resolutions
DateIP Address
2025-07-25151.80.13.35 (ClassC)

Subdomains
DateDomainIP
a.gwas.perl.sh2025-06-23151.80.13.35
g.gwas.perl.sh2025-05-15151.80.13.35
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information