Help RSS API Feed Maltego Contact                        

Domain > wthelpdesk.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://csirt.ninja/?p=1103    
http://www.jpcert.or.jp/magazine/acreport-ChChes.h...    

Files that talk to wthelpdesk.com
MD5A/V
1b891bc2e5038615efafabe48920f200[W32.eHeur.Malware03] [trojanspy.win32.skeeyah.a!rfn] [TrojWare.Win32.Palevo.AA] [BScope.Backdoor.Caphaw.1291] [Luhe.Fiha.A]
f03f70d331c6564aec8931f481949188
7891f00dcab0e4a2f928422062e94213
b0649c1f7fb15796805ca983fd8f95a3
37c89f291dbe880b1f3ac036e6b9c558[BKDR_ChChes.ZJDK-A] [BKDR_ChChes.ZJDK-A] [virtool.win32.injector.ge]

DNS Resolutions
DateIP Address
2024-08-1237.48.65.150 (ClassC)
2025-01-12207.244.67.216 (ClassC)
2025-01-21172.93.103.99 (ClassC)
2025-04-20172.93.103.100 (ClassC)
2025-05-13172.93.103.101 (ClassC)
2025-07-17172.93.103.102 (ClassC)
2025-08-01207.244.67.218 (ClassC)
2025-10-23104.247.81.52 (ClassC)
2026-01-07104.247.81.99 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
area.wthelpdesk.com2019-08-15178.62.125.244
zebra.wthelpdesk.com2019-07-31178.62.125.244
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information