Locky C2 :: dyoravdkiavfkbkx.pw
Host Information
Locky C2: | dyoravdkiavfkbkx.pw | |
---|---|---|
Threat: | C2 | |
Malware: | Locky | |
URL: | http://dyoravdkiavfkbkx.pw/userinfo.php | |
Host Status: | ||
Blacklist check: | Spamhaus DBL: | LISTED |
SURBL: | ||
Domain Registar: | Namecheap | |
Firstseen (UTC): | 2018-02-23 22:21:31 | |
Lastseen (UTC): |
Associated IP addresses
The table below shows all ip addresses (e.g. A records) associated with this Locky C2. In case the host is a domain name, the table also shows a history of previous A records if there are any.
Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address). yes = Active A record no = Historical record) | Firstseen (UTC) | Lastseen (UTC) | IP address | Hostname | SBL | AS number | AS name | Country |
---|---|---|---|---|---|---|---|---|
yes | 2018-02-23 22:24:48 | 2018-03-25 23:58:29 | 208.100.26.251 | ip251.208-100-26.static.steadfastdns.net | Not listed | AS32748 | STEADFAST - Steadfast, US | ![]() |
# IPs found: 1 (max. 25)
Referencing malware samples
Latest 100 malware binaries referencing this Locky C2:
Firstseen (UTC) | MD5 hash | Filesize | VT | Locky C2 URL |
---|---|---|---|---|
2018-02-23 00:43:51 | a6088c4b91b88d4edafc6da1c4ad03e5 | 179'712 bytes | ![]() | http://dyoravdkiavfkbkx.pw/userinfo.php |
Referencing malware samples: 1