Locky Distribution Site :: cast4all.com

Host Information

Locky Distribution Site:cast4all.com
Threat:Distribution Site
Malware:Locky
URL:http://cast4all.com/gvm3k2
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:REGISTER.COM, INC.
Nameserver(s):ns3.combell.net
 ns4.combell.net
Firstseen (UTC):2016-09-27 05:06:37
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-04-30 06:19:342019-11-13 06:20:2577.241.81.209linweb336.webhosting.beNot listedAS34762COMBELL-AS, BE- Belgium (BE)
no2017-01-09 12:35:022017-01-11 12:34:49185.26.230.134Not listedAS34922NETNAMES , GB- United Kingdom (GB)
no2016-12-01 15:15:422017-01-06 12:31:14216.21.224.199Not listedAS55002DEFENSE-NET - Defense.Net, Inc, US- United States (US)
no2016-11-26 15:00:492016-11-27 15:16:10216.21.239.197futuresite.register.comNot listedAS28006CORPORACION- United States (US)
no2017-01-07 12:19:522019-04-29 06:24:4323.236.62.147147.62.236.23.bc.googleusercontent.comNot listedAS15169GOOGLE - Google LLC, US- United States (US)
no2016-09-27 05:57:552016-11-25 14:55:5446.17.4.43srv1.h-web.beNot listedAS60781LEASEWEB-NL Netherlands, NL- Netherlands (NL)

# IPs found: 6 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-09-27 05:57:546c5d80a9dd79a207599a640a8c11dd6b151'044 bytesn/an/a

Unique dropped files: 1