Help RSS API Feed Maltego Contact                        

Domain > casper.bacguarp.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://researchcenter.paloaltonetworks.com/2015/05...    
https://otx.alienvault.com/pulse/5544b973b45ff5392...    

Files that talk to casper.bacguarp.com
MD5A/V
d9bc8bb9755d9927fa354b13f5b1c8e0
188bc7e4830572e60fc7b193d4ead4af[W32/Zegost.DFQK!tr.bdr] [SHeur4.CGOB] [Trojan.Dropper] [Backdoor.Win32.Zegost.dfqk] [Backdoor*Win32/Plugx.L]
a3e5c4511c45973dff7dc146546407de
fa8788448a2ca47aa7db9beb694097cf
39416403e2e065e87b18d4ecbccc6a6d
b7fa32a8cd1988e61093d96600966831
d4fde7aaa7d72afd259367f3eccba3f8
4e7ff0c5078c3a71c0a60e222aa1faa4
f242be978bba670b03d3df68a30d01c1[W32/Trojan.YOQT-8430] [Win32/Korplug.DD] [W32/Zegost.AFEO!tr.bdr] [Backdoor.Win32.Zegost] [Backdoor.Win32.Zegost.afeo] [0x579e432e] [Backdoor.Zegost]
2d873fed856501948470f284f1aeea0f
652d33dd59e5dbd6a191476efb086654
b85e318e59610846ffbfb1b7f76d31d7
6813d88b84933e5ea230294ddfadbc6f
4ce325995895f1511f1f3abc15cf2124
d75a79cfa13becab755e45cee246d998
ff3a9950147507743c312eec7e2a29ae
cf27af3c83454708367397ebf622d1d9
690b9e8a545c2dca2a49dce2a27fba07
4faf142d37ec6673c17df4654838920a
ba42b84391d2643b2956ca0059b01324[W32/Trojan.VPYJ-9368] [Win32/Korplug.DD] [W32/Zegost.AFDM!tr.bdr] [Trojan.SuspectCRC] [Backdoor.Win32.Zegost.afdm] [Trojan.Zbot] [Backdoor.Zegost]

Whois
PropertyValue
Email wedgsdva@hotmail.com
NameServer NS2FWZ.NAME.COM
Created 2011-06-08 00:00:00
Changed 2014-05-12 00:00:00
Expires 2015-06-08 00:00:00
Registrar NAME.COM, INC.