Locky C2 :: 83.217.11.193

Host Information

Locky C2:83.217.11.193
Threat:C2
Malware:Locky
URL:http://83.217.11.193/linuxsucks.php
Host Status:offline
Firstseen (UTC):2018-08-12 00:46:13
Lastseen (UTC):

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky C2. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-08-12 00:50:382018-09-11 23:58:0383.217.11.193artkoty.fortest.websiteNot listedAS199669ATLEX-AS, RU- Russian Federation (RU)

# IPs found: 1 (max. 25)

Referencing malware samples

Latest 100 malware binaries referencing this Locky C2:

Firstseen (UTC)MD5 hashFilesizeVTLocky C2 URL
2018-08-08 17:06:16aaa2c9010d8a6d93196146e0c4621f62207'327 bytesVirustotal results 42/68 (61.76%) http://83.217.11.193/linuxsucks.php

Referencing malware samples: 1