Locky Distribution Site :: itead-europe.com

Host Information

Locky Distribution Site:itead-europe.com
Threat:Distribution Site
Malware:Locky
URL:http://itead-europe.com/k3ias
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:1 API GMBH
Nameserver(s):ns1.dnsnuts.com
 ns2.dnsnuts.com
Firstseen (UTC):2016-03-31 05:14:37
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-08-01 06:57:172019-11-11 06:51:33162.210.195.123Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-09-13 06:52:292019-10-04 07:19:4364.32.8.70customer.sharktech.netNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2019-08-04 06:58:232019-10-25 06:57:25162.210.195.122Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-08-29 06:57:062019-10-06 07:19:3264.32.8.69customer.sharktech.netNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2019-08-08 07:01:102019-11-05 06:55:2664.32.8.68customer.sharktech.netNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2019-08-21 06:53:452019-11-04 07:05:5864.32.8.67customer.sharktech.netNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2019-10-30 06:51:552019-11-07 06:56:015.79.68.110Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-08-12 06:54:522019-10-24 06:53:225.79.68.109Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-08-19 06:56:122019-09-05 06:55:025.79.68.108Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-09-03 06:55:362019-11-09 06:54:175.79.68.107Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-09-27 06:52:352019-09-28 06:56:4946.166.182.116Not listedAS43350NFORCE, NL- Netherlands (NL)
no2019-08-07 06:58:372019-08-11 06:57:3646.166.182.115Not listedAS43350NFORCE, NL- Netherlands (NL)
no2019-08-02 07:01:332019-08-17 06:57:3146.166.182.112Not listedAS43350NFORCE, NL- Netherlands (NL)
no2019-09-06 06:55:412019-09-26 06:51:0946.166.182.111Not listedAS43350NFORCE, NL- Netherlands (NL)
no2019-11-08 06:53:40never46.166.182.110Not listedAS43350NFORCE, NL- Netherlands (NL)
no2019-09-02 06:55:39never46.166.182.109Not listedAS43350NFORCE, NL- Netherlands (NL)
no2019-10-10 07:00:512019-10-29 06:53:0337.48.65.151Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-08-06 06:59:482019-11-06 06:53:3937.48.65.150Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-07-31 09:32:272019-10-31 06:56:0437.48.65.149Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2019-08-13 06:53:092019-09-25 06:52:5637.48.65.148Not listedAS60781LEASEWEB-NL-AMS-01 Netherlands, NL- Netherlands (NL)
no2017-04-12 01:53:022018-04-04 01:45:28213.9.21.88s305.rackspeed-cloud.deNot listedAS12676NCORE-AS Hochstadenstr. 5, DE- Germany (DE)
no2016-03-31 05:14:372017-04-11 01:50:11213.9.20.162s305.rackspeed-cloud.deNot listedAS12676NCORE-AS Hochstadenstr. 5, DE- Germany (DE)
no2019-08-25 06:56:102019-11-10 06:54:39207.244.67.218Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-08-03 06:58:152019-10-21 06:54:10207.244.67.216Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-08-10 06:54:072019-09-16 06:53:03207.244.67.215Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-03-31 08:35:21ec7ebdb8dd943ca9afa0b56756bfb9e41'396 bytesVirustotal results 0/57 (0.00%) n/a
2016-03-31 05:35:33ebd73d6ca357429eb2cb292270a45236162'304 bytesVirustotal results 27/57 (47.37%) Locky

Unique dropped files: 2