Locky Distribution Site :: 917flw.com

Host Information

Locky Distribution Site:917flw.com
Threat:Distribution Site
Malware:Locky
URL:http://917flw.com/ruhcqho
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ENAME TECHNOLOGY CO., LTD.
Firstseen (UTC):2016-11-04 06:27:55
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2018-03-15 01:58:302018-04-08 01:58:0150.117.113.221Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)
no2019-10-09 07:39:182019-10-10 07:34:1154.209.151.119ec2-54-209-151-119.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-10-03 07:33:43never54.208.129.149ec2-54-208-129-149.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-10-03 07:33:42never54.173.119.225ec2-54-173-119-225.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-10-05 07:58:002019-10-08 07:34:5054.164.217.133ec2-54-164-217-133.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-09-25 07:21:052019-10-07 08:03:5154.164.209.9ec2-54-164-209-9.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-09-25 07:21:052019-10-07 08:03:5354.152.3.240ec2-54-152-3-240.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-10-09 07:39:192019-10-10 07:34:1154.152.17.83ec2-54-152-17-83.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-10-05 07:57:592019-10-08 07:34:5152.71.63.28ec2-52-71-63-28.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-03-10 13:05:412018-03-11 01:55:55103.215.214.169Not listedAS132839SUNHK-DATA-AS-AP Sun Network (Hong Kong)[...]- Hong Kong (HK)
no2019-09-01 07:19:462019-09-24 07:19:1134.230.100.214ec2-34-230-100-214.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-09-01 07:19:462019-09-24 07:19:1134.206.28.195ec2-34-206-28-195.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2019-04-20 07:24:032019-08-31 07:21:24209.40.112.7designed.siongain.comNot listedAS55933CLOUDIE-AS-AP Cloudie Limited, HK- United States (US)
no2016-11-04 07:26:502017-01-15 08:09:45122.228.244.196Not listedAS4134CHINANET-BACKBONE No.31,Jin-rong Street,[...]- China (CN)
no2018-09-02 07:36:102019-04-19 07:25:07107.178.107.169we.love.servers.at.ioflood.netNot listedAS53755IOFLOOD - Input Output Flood LLC, US- United States (US)
no2017-01-16 08:23:022017-01-27 07:56:24107.167.19.81customer.sharktech.netNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2017-01-16 08:23:022017-01-27 07:56:25107.167.19.80customer.sharktech.netNot listedAS46844ST-BGP - Sharktech, US- United States (US)
no2018-03-12 01:59:472018-03-14 01:57:02103.232.215.130Not listedAS18779EGIHOSTING - EGIHosting, US- China (CN)

# IPs found: 18 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-04 07:26:36013dddc5b9c3b93f563c99dee2c9de3d199'168 bytesVirustotal results 34/57 (59.65%) n/a

Unique dropped files: 1