Locky Distribution Site :: srisaijuniorcollege.com

This database entry has been flagged as "fixed / cleaned" and is therefore not being published on the Ransomware Tracker blocklist

Host Information

Locky Distribution Site:	srisaijuniorcollege.com
Threat:	Distribution Site
Malware:	Locky
URL:	http://srisaijuniorcollege.com/8rcybi43
Host Status:	offline
Blacklist check:	Spamhaus DBL:	Not Listed
	SURBL:	LISTED
Domain Registar:	PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Firstseen (UTC):	2016-09-23 09:39:36
Lastseen (UTC):	never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address). yes = Active A record no = Historical record)	Firstseen (UTC)	Lastseen (UTC)	IP address	Hostname	SBL	AS number	AS name	Country
no	2016-09-23 10:04:41	2019-05-07 06:45:05	205.242.21.2	ns11.isti.net	Not listed	AS53739	ISTINC - International Science and Techn[...]	United States (US)
no	2018-05-08 01:49:09	2019-06-15 06:43:57	209.99.40.222	209-99-40-222.fwd.datafoundry.com	Not listed	AS40034	TEXASNET-ASN - YHC Corporation, US	United States (US)
no	2018-05-07 07:09:55	2019-06-16 06:44:11	209.99.40.223	209-99-40-223.fwd.datafoundry.com	Not listed	AS3900	TEXASNET-ASN - YHC Corporation, US	United States (US)

# IPs found: 3 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)	MD5 hash	Filesize	VT	Signature
2016-09-23 10:04:12	b120121d61b152347c1f1fb15fff9e40	246'784 bytes	5/57 (8.77%)	n/a

Unique dropped files: 1