Locky Distribution Site :: amatoi.com

Host Information

Locky Distribution Site:amatoi.com
Threat:Distribution Site
Malware:Locky
URL:http://amatoi.com/876tYU6tg8e
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GMO Internet, Inc. dba Onamae.com
Nameserver(s):ns1.tsukaeru.net
 ns2.tsukaeru.net
Firstseen (UTC):2017-09-05 11:01:09
Lastseen (UTC):

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2017-09-05 11:02:362019-10-16 06:00:24121.50.46.158Not listedAS63997TSUKAERUNET Tsukaeru.net, Web Hosting Co[...]- Japan (JP)
no2018-06-24 06:10:472019-06-24 05:55:3752.25.92.0ec2-52-25-92-0.us-west-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- United States (US)
no2018-06-25 06:10:382019-06-23 05:59:2554.65.172.3ec2-54-65-172-3.ap-northeast-1.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Japan (JP)

# IPs found: 3 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2017-09-05 11:05:28869debb0e6580ac74dd321fbefb6a2ed617'472 bytesVirustotal results 10/45 (22.22%) n/a

Unique dropped files: 1