TorrentLocker Distribution Site :: robberseeiland.nl

Host Information

TorrentLocker Distribution Site:robberseeiland.nl
Threat:Distribution Site
Malware:TorrentLocker
URL:http://robberseeiland.nl/components/file.exe
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:Net Ground B.V.
Nameserver(s):ns1.argewebhosting.eu
 ns2.argewebhosting.com
 ns3.argewebhosting.nl
Firstseen (UTC):2016-07-14 06:50:20
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this TorrentLocker Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2016-07-14 06:50:202019-08-22 02:46:4587.253.134.150web.t4is.nlNot listedAS20857 TRANSIP-AS Amsterdam, the Netherlands, [...]- Netherlands (NL)

# IPs found: 1 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-07-15 08:38:08ac0babeb18c3b518111129a18055acff681'984 bytesVirustotal results 27/52 (51.92%) n/a
2016-07-14 09:44:196517b3112e59e49818d0a6348abbbd7e678'400 bytesVirustotal results 14/54 (25.93%) n/a
2016-07-14 07:28:34dfd849d92fb9b43bbd714ca3d89301be434'274 bytesVirustotal results 4/53 (7.55%) TorrentLocker

Unique dropped files: 3