Help RSS API Feed Maltego Contact                        

Domain > ie.update-windows-microsoft.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
https://foxitsecurity.files.wordpress.com/2016/06/...    
https://github.com/fox-it/mofang    
https://foxitsecurity.files.wordpress.com/2016/06/...    

Files that talk to ie.update-windows-microsoft.com
MD5A/V
db56044e6d8dd30fd915ba03d3de421f[Trojan.FakePDF] [WS.Reputation.1] [Trojan-Dropper.Win32.Dapato.erpn] [Trojan.DownLoader11.41999] [PE:Malware.FakePDF@CV!1.9C3A] [Trojan.Win32.Dapato.ac]
582e4adddfd12f7d68035c3b8e2e3378[Trojan-Dropper.Win32.Injector.lwup] [Trojan.Win32.Injector.dqzkpt] [BehavesLike.Win32.Worm.ch] [Trojan[Dropper]/Win32.Injector] [Trojan.Graftor.D2E3ED]

Whois
PropertyValue
NameServer NS26.DOMAINCONTROL.COM
Created 2013-08-13 00:00:00
Changed 2015-07-03 00:00:00
Expires 2016-08-13 00:00:00
Registrar GODADDY.COM, LLC