Locky Distribution Site :: labtekindie.com

Host Information

Locky Distribution Site:labtekindie.com
Threat:Distribution Site
Malware:Locky
URL:http://labtekindie.com/0ftce4
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:CV. JOGJACAMP
Nameserver(s):ns1.digitalocean.com
 ns2.digitalocean.com
 ns3.digitalocean.com
Firstseen (UTC):2016-11-09 14:49:01
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2017-03-21 02:06:382019-04-25 01:24:01128.199.137.228Not listedAS14061DIGITALOCEAN-AS-AP Digital Ocean, Inc., [...]- Singapore (SG)
no2016-11-09 16:25:38never103.28.12.180bigpotatoes.qwords.netNot listedAS58404QWORDS-AS-ID PT Qwords Company Internati[...]- Indonesia (ID)
no2016-11-17 02:49:222017-03-20 02:04:13192.124.249.102cloudproxy10102.sucuri.netNot listedAS30148SUCURI-SEC - Sucuri, US- United States (US)
no2018-11-21 01:34:392018-11-23 01:33:3754.254.97.9ec2-54-254-97-9.ap-southeast-1.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Singapore (SG)

# IPs found: 4 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-09 16:08:24470a2d4f82942f35ef29466e38f7633a229'376 bytesVirustotal results 18/59 (30.51%) # Not authorized

Unique dropped files: 1