ZeuS Tracker :: C&C sface549.tk

The list below shows all ZeuS configs, ZeuS binaries, ZeuS dropzones and FakeURLs which are hosted on sface549.tk.

Live Information

ZeuS C&C:sface549.tk
Malware:Citadel
IP address:185.28.100.99
Host status:online
Uptime:838:59:59
Hostname:sinkhole.spam-and-abuse.pl
SBL:Not listed
AS number:24806
AS name:INTERNET-CZ Ktis 2, 384 03 Ktis, CZ
Country:- Slovakia (SK)
Level:4 (Unknown / not categorized)
Sponsoring registrar:n/a
Nameserver(s):ns01.freenom.com | ns02.freenom.com | ns03.freenom.com | ns04.freenom.com
Date added:2016-10-30
Last checked:2017-04-27
Last updated:2017-03-26
BL status:This host is being published on the ZeuS Blocklist!

ZeuS ConfigURLs on this C&C

DateaddedZeuS ConfigURLStatusVBuilderFilesizeMD5 hashHTTP StatusFile download
2016-10-30sface549.tk/issac/atmos/file.phpoffline2n/a14'064f53af69891b0bead3f6f64d5bd841e3b200- download

ZeuS BinaryURLs on this C&C

DateaddedZeuS BinaryURLStatusFilesizeMD5 hashAnubisVirustotalHTTP StatusFile download

none

ZeuS DropURLs (Dropzones) on this C&C

DateaddedDropURLStatusHTTP Status
2016-10-30sface549.tk/issac/atmos/gate.phponline200

FakeURLs referenced by ZeuS Configs

ZeuS Config MD5FakeURLProtocol

Historical information

Domain History

ChangedateHostIP addressAS numberAS nameCountry
2017-03-26sface549.tk0
-
2017-01-05sface549.tk178.32.1.4316276OVH OVH
-
2016-12-23sface549.tk0
-
2016-12-22sface549.tk178.32.1.4316276OVH OVH
-
2016-12-15sface549.tk162.144.69.11146606BLUEHOST-AS-2 - Bluehost Inc.
-
2016-12-14sface549.tk0
-
2016-12-09sface549.tk162.144.69.11146606BLUEHOST-AS-2 - Bluehost Inc.
-
2016-12-01sface549.tk0
-
2016-11-28sface549.tk162.144.69.11146606BLUEHOST-AS-2 - Bluehost Inc.
-
2016-11-18sface549.tk0
-
2016-11-01sface549.tk162.144.141.18346606BLUEHOST-AS-2 - Bluehost Inc.
-

# of rows: 11