Help RSS API Feed Maltego Contact                        

Domain > a.pomf.cat

Welcome! Right click nodes and scroll the mouse to navigate the graph.
This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
https://portal.cybersecurity.mo.gov/util/url_black...    
https://www.proofpoint.com/us/threat-insight/post/...    

Files that talk to a.pomf.cat
MD5A/V
c94802801bf00b2c9d7f2abc8c8f0269[W97M.Downloader.BFV] [W97M.Downloader.BFV] [W97M/None] [W97M.Downloader.BFV] [W97M.Downloader.BFV] [W97M.Downloader.BFV] [W97M.Downloader.BFV]
818ebf1bdeb2015d53787a92747b833b[MSWord/Downloader.s] [HEUR.VBA.Trojan.d]
e916d678f025ef30920ee073bc8526c9
38b51817bfe719bdc7b3b2fd5e728651
0eac86874f98cd5abcef79cefc1f6464
a1d7927d55cd71bb2f44de28d3dc4d8d[Win32.Trojan.Dldr.Lmuh] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [WM/TrojanDownloader.BYX!tr]
adc0629f20d68b7ed5afbff6548e2b7c
f6b59046661f9584a83b44e715b3cc32
b119c125e2fa8627a8ce09ecfdcc5e07
46d8bb7363d4642f42a66968095ebbe2
2d9617cb4fb6702ed67dc65db29c9e4b
39c5b7d955d1fca8b28d5d55556a0557
ab7d5557024d5b8c4e62878cd03f0b24[Trojan.Doc.Downloader.LR] [Trojan.Doc.Downloader.LR] [W97M.Downloader] [W2KM_DLOADR.YYSPW] [W97M.S.Downloader.571392.A[h]] [Trojan.Doc.Downloader.LR] [Trojan.Doc.Downloader.LR] [W2KM_DLOADR.YYSPW] [Trojan.BDLU-2] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [W2KM/Downloader] [Trojan.Doc.Downloader.LR] [WM/TrojanDownloader.BYX!tr]
74c8d5c6cf4496b44cc96b75aaeb82f4[W2KM_DLOADR.YYSPW] [Troj/DocDl-CQP] [W2KM_DLOADR.YYSPW] [Trojan.RVVC-31] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [W2KM/Downloader] [WM/TrojanDownloader.BYX!tr]
d9dd67efcd47b9e22011a28f1b25525c[W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [W2KM/Downloader] [W97M.Downloader.BLT] [WM/TrojanDownloader.BYX!tr]
bad2c893c0c654628b5f27d0808f81d2[W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M/Downloader.bbn] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [W97M/Downloader.bbn] [MSWord/Downloader.s] [W97M.Downloader.BLT] [W97M.Downloader.BLT] [WM/TrojanDownloader.BYX!tr]
4fb969c01682eaa1fedcae26d3960acc
fe8ded66691895b1470424fc0465885f
7ea3a5dbe57c43aad09a2d64776db412[MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [WM/TrojanDownloader.BYX!tr]
031632cf55a245ac494785e8ee51fd65[MSWord/Downloader.s] [HEUR.VBA.Trojan.d] [WM/TrojanDownloader.BYX!tr]

Whois
PropertyValue
NameRobin Von Ruden
Organization Pomf LLC
Email 493ba1c744ecc4838264f4737466b766-4607795@contact.gandi.net
Address Obfuscated whois Gandi-63-65 boulevard Massena
Zip Code 75013
City Obfuscated whois Gan
Country FR
Phone +33.170377666
Fax +33.143730576
NameServer ns2.servernap.com
Created 2015-06-09 00:46:11
Expires 2016-06-09 00:46:11
Registrar GANDI SAS

DNS Resolutions
DateIP Address
2015-07-09104.31.84.54 (ClassC)
2015-07-15104.31.85.54 (ClassC)
2016-03-2669.65.17.35 (ClassC)
2016-03-2666.55.92.21 (ClassC)
2019-09-0566.55.90.17 (ClassC)
2025-12-3069.39.225.3 (ClassC)

Port 80
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information