Locky Distribution Site :: www.pb2bb2c.com

Host Information

Locky Distribution Site:www.pb2bb2c.com
Threat:Distribution Site
Malware:Locky
URL:http://www.pb2bb2c.com/g76dbf
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Firstseen (UTC):2016-10-25 15:05:04
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-09-14 05:22:332019-09-20 05:04:57107.175.142.231107-175-142-231-host.colocrossing.comNot listedAS36352AS-COLOCROSSING - ColoCrossing, US- United States (US)
no2018-06-02 01:31:372018-06-18 01:30:0170.39.125.243force.instantlyprogress5.comNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2018-06-02 01:31:352018-06-18 01:30:00107.161.23.204parking.namesilo.comNot listedAS3842RAMNODE - RamNode LLC, US- United States (US)
no2018-06-02 01:31:332018-06-18 01:30:0464.32.22.101Not listedAS46844ST-BGP - Sharktech, US- United States (US)
no2017-02-20 01:30:442017-02-28 01:30:5050.63.202.48ip-50-63-202-48.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-26 01:30:07never50.63.202.44ip-50-63-202-44.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-03-01 01:29:37never50.63.202.39ip-50-63-202-39.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-02 01:31:352018-06-18 01:30:0645.58.190.82mta.boltoclose.comNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2018-06-02 01:31:322018-06-18 01:30:05209.141.38.71parking.namesilo.comNot listedAS53667PONYNET - FranTech Solutions, US- United States (US)
no2018-06-02 01:31:362018-06-18 01:30:07204.188.203.154sixsigma4.ssbrmkt.com.brNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2018-06-02 01:31:372018-06-18 01:30:02198.251.84.92parking.namesilo.comNot listedAS53667PONYNET - FranTech Solutions, US- United States (US)
no2018-06-02 01:31:382018-06-18 01:30:02198.251.81.30parking.namesilo.comNot listedAS53667PONYNET - FranTech Solutions, US- United States (US)
no2018-06-19 05:21:182018-09-13 05:19:22198.211.52.88-52-211-198-dedicated.multacom.comNot listedAS35916MULTA-ASN1 - MULTACOM CORPORATION, US- United States (US)
no2018-06-02 01:31:382018-06-18 01:30:04192.161.187.200192.161.187.200.static.quadranet.comNot listedAS8100ASN-QUADRANET-GLOBAL - QuadraNet, Inc, U[...]- United States (US)
no2018-06-02 01:31:342018-06-18 01:30:03188.164.131.200parking.namesilo.comNot listedAS34971PDDA-AS, IT- Italy (IT)
no2017-03-02 01:31:482017-05-13 01:32:48185.176.40.61p8.runhosting.comNot listedAS44476ZETTA-AS , BG- Bulgaria (BG)
no2017-09-21 01:24:082017-10-25 01:35:28184.168.221.37ip-184-168-221-37.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-21 01:31:292017-02-25 01:32:25184.168.221.35ip-184-168-221-35.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-02 01:31:322018-06-18 01:30:06173.44.37.208173.44.37.208.static.quadranet.comNot listedAS8100ASN-QUADRANET-GLOBAL - QuadraNet, Inc, U[...]- United States (US)
no2016-10-25 15:27:262017-02-19 01:32:19160.153.92.34ip-160-153-92-34.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-02 01:31:392018-06-18 01:30:04107.191.99.119aether.layerbnc.orgNot listedAS3842RAMNODE - RamNode LLC, US- United States (US)

# IPs found: 21 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-10-25 15:24:4841c2644723ee69c979c0b00e28084132278'528 bytesVirustotal results 22/60 (36.67%) n/a

Unique dropped files: 1