Locky Distribution Site :: mandmlandscapes.com

Host Information

Locky Distribution Site:mandmlandscapes.com
Threat:Distribution Site
Malware:Locky
URL:http://mandmlandscapes.com/Invoice-493482/
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:Network Solutions, LLC.
Nameserver(s):ns1.a2hosting.com
 ns2.a2hosting.com
 ns3.a2hosting.com
 ns4.a2hosting.com
Firstseen (UTC):2017-08-22 09:10:23
Lastseen (UTC):

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-06-15 07:05:122019-10-21 07:05:45209.124.65.186209.124.65.186.static.a2webhosting.comNot listedAS55293A2HOSTING - A2 Hosting, Inc., US- United States (US)
no2017-08-22 09:10:232019-06-14 07:06:15173.247.249.48vps6019.inmotionhosting.comNot listedAS22611- United States (US)
no2019-08-02 07:03:512019-08-23 06:59:07192.124.249.68cloudproxy10068.sucuri.netNot listedAS30148SUCURI-SEC - Sucuri, US- United States (US)

# IPs found: 3 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2017-08-22 15:45:06976e7a67fc7a5990074ccf7ffede113a61'440 bytesVirustotal results 5/58 (8.62%) n/a
2017-08-22 14:15:07f1bfe88651e17a28cab395c0eddf9b1d61'952 bytesVirustotal results 7/58 (12.07%) n/a
2017-08-22 12:15:063b7f031d40a39a3f6fd0dbaf0169710361'952 bytesVirustotal results 6/58 (10.34%) Heodo
2017-08-22 09:11:05684d066946d95922f8727ee217406ad258'368 bytesVirustotal results 9/58 (15.52%) Heodo

Unique dropped files: 4