Locky Distribution Site :: aimonino.info

Host Information

Locky Distribution Site:aimonino.info
Threat:Distribution Site
Malware:Locky
URL:http://aimonino.info/p66/uyitfu65uy
Host Status:offline
Blacklist check:Spamhaus DBL:LISTED
 SURBL:LISTED
Domain Registar:Eranet International Limited
Firstseen (UTC):2017-10-04 08:47:56
Lastseen (UTC):

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2017-10-08 03:09:45never188.75.243.196subscriber-188-75-243-196.mts-chita.ruNot listedAS48212MKS-CHITA-AS, RU- Russian Federation (RU)
no2017-10-08 03:09:45never46.175.74.88res74-88.mediana.net.uaNot listedAS56347MEDIANA-AS, UA- Ukraine (UA)
no2017-10-08 02:30:272017-10-08 02:34:3377.35.146.231Not listedAS12389ROSTELECOM-AS, RU- Russian Federation (RU)
no2017-10-08 02:26:55never185.127.247.34Not listedAS29128DSIP-AS, UA- Ukraine (UA)
no2017-10-08 01:04:392017-10-08 02:22:5293.115.255.203Not listedAS6910DIALTELECOM, RO- Romania (RO)
no2017-10-07 23:57:372017-10-08 01:12:4379.118.236.9079-118-236-90.pitesti.rdsnet.roNot listedAS8708RCS-RDS 73-75 Dr. Staicovici, RO- Romania (RO)
no2017-10-07 23:19:332017-10-07 23:21:55109.87.42.3232.42.87.109.triolan.netNot listedAS13188TRIOLAN, UA- Ukraine (UA)
no2017-10-07 22:52:382017-10-07 22:57:1491.210.144.140Not listedAS48272ICTNET-UA-AS, UA- Ukraine (UA)
no2017-10-07 22:37:032017-10-08 03:01:0681.162.72.129Not listedAS198293GIGABYTE-AS, UA- Ukraine (UA)
no2017-10-07 22:37:012017-10-08 03:05:0131.14.232.146Not listedAS6910DIALTELECOM, RO- Romania (RO)
no2017-10-07 22:33:352017-10-08 02:47:45176.121.199.216ip176-121-199-216.element.dn.uaNot listedAS47526BELOUS-AS, UA- Ukraine (UA)
no2017-10-07 21:45:072017-10-07 21:49:37217.199.235.120Not listedAS25299DEXP-AS, UA- Ukraine (UA)
no2017-10-07 21:45:032017-10-08 03:01:045.13.70.775-13-70-77.residential.rdsnet.roNot listedAS8708RCS-RDS 73-75 Dr. Staicovici, RO- Romania (RO)
no2017-10-07 21:31:492017-10-07 21:36:2588.135.233.147Not listedAS30779INETKR-AS Krivoy Rog, Ukraine, UA- Ukraine (UA)
no2017-10-07 21:22:472017-10-07 21:27:2737.113.197.23237x113x197x232.dynamic.bryansk.ertelecom.ruNot listedAS57044BRYANSK-AS, RU- Russian Federation (RU)
no2017-10-07 21:10:362017-10-07 21:14:4891.220.190.24Not listedAS21219DATAGROUP, UA- Ukraine (UA)
no2017-10-07 20:57:012017-10-07 21:01:515.188.174.89Not listedAS39047KERCHNET-AS Multiservice Networks Ltd., [...]- Russian Federation (RU)
no2017-10-07 20:53:072017-10-08 02:47:46176.99.113.216pool.sevtele.comNot listedAS48330GIGANET-UA-AS, UA- Ukraine (UA)
no2017-10-07 20:43:472017-10-07 20:48:22130.0.48.194130-0-48-194.broadband.tenet.odessa.uaNot listedAS6876TENET-AS, UA- Ukraine (UA)
no2017-10-07 20:43:462017-10-07 21:57:555.105.6.2065-105-6-206.mytrinity.com.uaNot listedAS43554CDS-AS, UA- Ukraine (UA)
no2017-10-07 20:43:452017-10-07 20:48:2192.49.196.93Not listedAS21299ORBITA-PLUS-AS Almaty, Republic of Kazak[...]- Kazakhstan (KZ)
no2017-10-07 20:39:21never46.150.86.175vra-086-175.vivanet.net.uaNot listedAS44728TELESVIT-AS Volia Melitopol, UA- Ukraine (UA)
no2017-10-07 20:26:422017-10-07 20:53:0992.38.111.250pppoe-250.111.38.92.realcrimea.netNot listedAS44546ALFATELECOM, CZ- Ukraine (UA)
no2017-10-07 20:08:512017-10-07 23:05:4591.244.151.190Not listedAS44798PERVOMAYSK-AS, UA- Ukraine (UA)
no2017-10-07 20:08:502017-10-08 02:22:5393.79.104.5Not listedAS25229VOLIA-AS, UA- Bulgaria (BG)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2017-10-05 12:52:29b75bd60dc3686fe62eb4a4a8372be966588'800 bytesVirustotal results 55/65 (84.62%) # Not authorized

Unique dropped files: 1