Locky Distribution Site :: icefon.eu

Host Information

Locky Distribution Site:icefon.eu
Threat:Distribution Site
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:TLD Registrar Solutions Ltd
Firstseen (UTC):2016-11-13 09:13:49
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2018-10-11 05:13:582018-10-12 05:12:52103.67.235.120sp-hosting01.per01.ds.networkNot listedAS38719DREAMSCAPE-AS-AP Dreamscape Networks Lim[...]- Australia (AU)
no2018-10-13 05:12:432019-10-11 04:59:48104.31.68.179Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-10-13 05:12:442019-10-11 04:59:47104.31.69.179Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-01-24 01:49:342018-08-30 05:14:58184.164.75.18tania.ndx10.comNot listedAS53755IOFLOOD - Input Output Flood LLC, US- United States (US)
no2016-11-13 10:57:022018-01-23 01:48:22198.15.101.2Not listedAS20454SSASN2 - SECURED SERVERS LLC, US- United States (US)
no2018-08-06 05:18:212018-08-08 05:17:03209.99.40.223209-99-40-223.fwd.datafoundry.comNot listedAS3900TEXASNET-ASN - YHC Corporation, US- United States (US)

# IPs found: 6 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-13 10:57:01deacfbca08bfd8dbbab3a222a785abcf118'784 bytesVirustotal results 40/57 (70.18%) n/a

Unique dropped files: 1