TeslaCrypt C2 :: csucanuevo.csuca.org

Host Information

TeslaCrypt C2:csucanuevo.csuca.org
Threat:C2
Malware:TeslaCrypt
URL:http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:Gandi SAS
Firstseen (UTC):2016-03-07 21:15:17
Lastseen (UTC):2016-03-09 19:49:35

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this TeslaCrypt C2. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2016-03-08 07:02:122016-03-09 18:26:41186.151.199.55.199.151.186.static.intelnet.net.gtNot listedAS14754Telgua,GT- Guatemala (GT)

# IPs found: 1 (max. 25)

Referencing malware samples

Latest 100 malware binaries referencing this TeslaCrypt C2:

Firstseen (UTC)MD5 hashFilesizeVTTeslaCrypt C2 URL
2016-03-08 13:49:27fa2e23aaf5ab9069ee8b3fad0c3aa591385'024 bytesVirustotal results 40/56 (71.43%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
2016-03-08 13:49:14f88c12f2ccd31b7877031d8a22d652ed385'024 bytesVirustotal results 40/56 (71.43%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
2016-03-08 13:46:18ec9a8118e2473027cec05ebaadd074f5393'216 bytesVirustotal results 41/56 (73.21%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
2016-03-08 13:36:37c3cb934d93db52b22c2ce7d03abe8417385'024 bytesVirustotal results 40/55 (72.73%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
2016-03-08 13:25:168f6a85eb0c58837a48a7f9163e5d30d1385'024 bytesVirustotal results 40/56 (71.43%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
2016-03-08 12:56:12055e612b2818622f50967cf098427c17393'216 bytesVirustotal results 40/55 (72.73%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php
2016-03-07 15:39:43923e4997bc57d1ad633cfbc029e2ecdd397'312 bytesVirustotal results 41/56 (73.21%) http://csucanuevo.csuca.org/attachments/wp-content/bstr.php

Referencing malware samples: 7