Locky C2 :: 93.170.131.108

Host Information

Locky C2:93.170.131.108
Threat:C2
Malware:Locky
URL:http://93.170.131.108/submit.php
Host Status:offline
Firstseen (UTC):2016-03-30 14:02:03
Lastseen (UTC):2016-04-05 09:23:57

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky C2. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2016-03-30 16:42:302016-05-05 12:25:0893.170.131.108Not listedAS57494ADMAN-AS , RU- Russian Federation (RU)

# IPs found: 1 (max. 25)

Referencing malware samples

Latest 100 malware binaries referencing this Locky C2:

Firstseen (UTC)MD5 hashFilesizeVTLocky C2 URL
2016-04-04 18:55:38f8002b50d716b75e9f467fce45592b8a196'608 bytesVirustotal results 37/57 (64.91%) http://93.170.131.108/submit.php
2016-04-04 18:54:51386a46c5ab45161d37bab03552d22ce6200'704 bytesVirustotal results 39/57 (68.42%) http://93.170.131.108/submit.php
2016-04-01 02:10:276c41aa5312a74db8c3cad2806cb4fd8c196'608 bytesVirustotal results 14/57 (24.56%) http://93.170.131.108/submit.php
2016-03-31 13:09:21347891bd1d3b4daace04574d7301a416275'456 bytesVirustotal results 27/57 (47.37%) http://93.170.131.108/submit.php
2016-03-31 04:54:00f2d7345959861e55b51fdb254b18cde7169'984 bytesVirustotal results 17/56 (30.36%) http://93.170.131.108/submit.php
2016-03-31 04:53:55e6021814cd52f27c0e177993cef8a093169'472 bytesVirustotal results 23/57 (40.35%) http://93.170.131.108/submit.php
2016-03-31 04:53:53e56d9dbdb1ab1768af5435535e578373169'984 bytesVirustotal results 14/57 (24.56%) http://93.170.131.108/submit.php
2016-03-31 04:53:49d8ab7b01bc47e837d74369d7a103b543172'032 bytesVirustotal results 30/57 (52.63%) http://93.170.131.108/submit.php
2016-03-31 04:53:46c9acaf1bb9ce74538640de06b844f70a168'960 bytesVirustotal results 12/57 (21.05%) http://93.170.131.108/submit.php
2016-03-31 04:53:38af44cafc821ff931225c3f65dca77892169'472 bytesVirustotal results 19/56 (33.93%) http://93.170.131.108/submit.php
2016-03-31 04:52:5201e2b6fb23d4a6b5250e95fdf47f0d01168'960 bytesVirustotal results 24/57 (42.11%) http://93.170.131.108/submit.php
2016-03-30 12:16:025fb8f8f75342ff68ed8c79cc375f0cd8172'032 bytesVirustotal results 7/56 (12.50%) http://93.170.131.108/submit.php

Referencing malware samples: 12