Locky Distribution Site :: stokmer.com

Host Information

Locky Distribution Site:stokmer.com
Threat:Distribution Site
Malware:Locky
URL:http://stokmer.com/wnrsmbee4o
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:REG2C.COM, INC.
Firstseen (UTC):2016-12-02 18:14:19
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2017-08-20 01:19:032017-09-29 01:46:49209.99.40.222209-99-40-222.fwd.datafoundry.comNot listedAS40034TEXASNET-ASN - YHC Corporation, US- United States (US)
no2017-10-06 01:52:592018-08-07 01:04:5970.32.1.32ip-70.32.1.32.hosted.by.gigenet.comNot listedAS32181ASN-GIGENET - GigeNET, US- United States (US)
no2018-09-08 01:02:312018-09-23 01:01:5150.63.202.95ip-50-63-202-95.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-29 01:02:33never50.63.202.94ip-50-63-202-94.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-31 01:02:32never50.63.202.93ip-50-63-202-93.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-12 01:02:29never50.63.202.92ip-50-63-202-92.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-13 01:02:412018-09-28 01:03:4350.63.202.88ip-50-63-202-88.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-07 01:02:362018-09-26 01:03:3350.63.202.85ip-50-63-202-85.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-26 01:03:07never50.63.202.83ip-50-63-202-83.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-01 01:02:39never50.63.202.80ip-50-63-202-80.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-29 01:03:40never50.63.202.68ip-50-63-202-68.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-08-19 01:19:472017-09-28 01:44:15209.99.40.223209-99-40-223.fwd.datafoundry.comNot listedAS40034TEXASNET-ASN - YHC Corporation, US- United States (US)
no2018-04-24 02:01:392018-05-01 01:00:11103.224.182.250lb-182-250.above.comNot listedAS133618TRELLIAN-AS-AP Trellian Pty. Limited, AU- Australia (AU)
no2017-10-05 06:38:292018-06-18 01:00:14192.184.12.62Not listedAS32421BLCC - Black Lotus Communications, US- United States (US)
no2016-12-02 23:54:412017-02-05 03:59:22185.9.36.186mail.ruzigar.comNot listedAS199608BIRBIR , TR- Turkey (TR)
no2018-09-04 01:02:32never184.168.221.92ip-184-168-221-92.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-06 01:02:362018-09-27 01:03:34184.168.221.88ip-184-168-221-88.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-28 01:02:272018-09-05 01:02:29184.168.221.83ip-184-168-221-83.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-21 01:02:33never184.168.221.77ip-184-168-221-77.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-24 01:02:252018-08-30 01:02:31184.168.221.76ip-184-168-221-76.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-19 01:03:07never184.168.221.75ip-184-168-221-75.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-09-30 01:48:152017-10-01 01:49:42184.168.221.62ip-184-168-221-62.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-02 01:48:212018-08-23 01:02:34103.224.212.222lb-212-222.above.comNot listedAS133618TRELLIAN-AS-AP Trellian Pty. Limited, AU- Australia (AU)

# IPs found: 23 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-02 23:54:39883c7a624c6f6aed2f30e15a680d24d9271'225 bytesn/an/a

Unique dropped files: 1