Contact
Statistics
Feeds
Blocklist
Tracker
Mitigation
Home
  1. Main › 
  2. Tracker › 
  3. pattumalamatha.com

Locky Distribution Site :: pattumalamatha.com

Host Information

Locky Distribution Site:pattumalamatha.com
Threat:Distribution Site
Malware:Locky
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Firstseen (UTC):2016-10-05 10:08:24
Lastseen (UTC):never

Ransomware URLs

The table below shows all associated Ransomware URLs located on this host.

Firstseen (UTC)URL (?URL assocaited with this Ransomware. The leading dots (Red, Green, Grey) indicate whether the URL is active or not.

Red = Online
Green = Offline
Grey = Unknown)		ThreatMalware
2016-11-22 12:34:55
http://pattumalamatha.com/biwkk3sp		Distribution SiteLocky
2016-10-05 10:08:24
http://pattumalamatha.com/e7r2v1t		Distribution SiteLocky

# of URLs: 2

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record)		Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2018-02-21 01:28:492018-03-02 01:51:4350.63.202.45ip-50-63-202-45.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-09-29 01:01:422018-03-18 01:28:0250.63.202.55ip-50-63-202-55.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-11-21 01:21:112018-06-01 01:25:4650.63.202.54ip-50-63-202-54.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-27 01:50:002018-04-10 01:52:4950.63.202.53ip-50-63-202-53.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-04 01:51:572018-03-08 01:28:4650.63.202.52ip-50-63-202-52.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-17 01:51:262018-04-09 01:26:0050.63.202.50ip-50-63-202-50.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-23 01:48:212018-02-27 01:29:3850.63.202.49ip-50-63-202-49.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-04 01:26:402018-06-04 01:45:5050.63.202.48ip-50-63-202-48.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-03 01:49:412018-07-07 03:20:2950.63.202.47ip-50-63-202-47.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-01 01:28:592018-05-06 03:14:2550.63.202.46ip-50-63-202-46.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-29 01:18:572018-02-26 01:28:5750.63.202.57ip-50-63-202-57.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-15 01:51:322018-06-21 03:16:0150.63.202.43ip-50-63-202-43.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-12 01:27:462018-02-17 01:28:3050.63.202.41ip-50-63-202-41.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-04 01:48:182018-03-20 01:51:1350.63.202.40ip-50-63-202-40.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-21 01:27:422018-03-27 01:53:2650.63.202.39ip-50-63-202-39.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-09-27 01:44:472018-06-06 01:47:4750.63.202.38ip-50-63-202-38.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-22 01:27:122018-03-19 01:27:2550.63.202.37ip-50-63-202-37.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-28 01:17:012018-07-03 03:17:4750.63.202.36ip-50-63-202-36.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-09-26 02:34:332018-03-12 01:28:0750.63.202.35ip-50-63-202-35.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-08 07:21:34never50.63.202.69ip-50-63-202-69.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-25 07:02:302019-06-26 03:17:2889.35.39.67Not listedAS44220PARFUMURI-FEMEI-AS, RO- Romania (RO)
no2019-06-29 07:05:55never89.35.39.65mx1.dartxtree.comNot listedAS44220PARFUMURI-FEMEI-AS, RO- Romania (RO)
no2019-06-26 07:04:24never89.35.39.50Not listedAS44220PARFUMURI-FEMEI-AS, RO- Romania (RO)
no2018-07-09 03:20:022018-07-29 07:20:2450.63.202.93ip-50-63-202-93.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-07 03:20:16never50.63.202.92ip-50-63-202-92.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-22 17:13:48e1be189f5c2568b36ca4d2a5a695929d184'587 bytesVirustotal results 3/54 (5.56%) n/a

Unique dropped files: 1

Copyright © 2016 ransomwaretracker.abuse.ch version 1.0 / 2016-02-21