Locky Distribution Site :: makingitalia.net

Host Information

Locky Distribution Site:makingitalia.net
Threat:Distribution Site
Malware:Locky
URL:http://makingitalia.net/mbv58gbv
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:INTERNET DOMAIN SERVICE BS CORP
Nameserver(s):dns10.parkpage.foundationapi.com
 dns11.parkpage.foundationapi.com
Firstseen (UTC):2016-07-20 11:11:51
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-11-11 01:20:452018-12-15 01:15:22209.99.40.223209-99-40-223.fwd.datafoundry.comNot listedAS3900TEXASNET-ASN - YHC Corporation, US- United States (US)
no2016-07-20 11:12:442017-02-09 14:36:32158.58.168.68lnx2.slhosting.itNot listedAS49367ASSEFLOW Amsterdam Internet Exchange (AM[...]- Italy (IT)
no2018-10-17 01:16:192018-11-06 01:20:42198.251.81.225s6.asurahosting.comNot listedAS53667PONYNET - FranTech Solutions, US- United States (US)
no2017-11-09 01:02:532017-12-05 01:12:09208.91.197.91Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2018-11-12 01:20:392018-12-14 01:15:19209.99.40.222209-99-40-222.fwd.datafoundry.comNot listedAS3900TEXASNET-ASN - YHC Corporation, US- United States (US)
no2017-12-06 01:11:572018-04-04 01:04:135.189.173.109s6.asurahosting.comNot listedAS51167CONTABO , DE- Germany (DE)
no2017-04-13 02:06:272017-05-13 02:03:1154.72.130.67ns1.ibspark.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Ireland (IE)
no2017-02-10 14:32:492017-04-12 01:58:1395.141.37.251lnx8.slhosting.itNot listedAS49367ASSEFLOW Amsterdam Internet Exchange (AM[...]- Italy (IT)

# IPs found: 8 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-07-20 11:12:2122a2ac13278a345118f4e5765d63f4b0340'708 bytesVirustotal results 42/54 (77.78%) Locky

Unique dropped files: 1