Locky Distribution Site :: equityreleaseaustralia.com

Host Information

Locky Distribution Site:equityreleaseaustralia.com
Threat:Distribution Site
Malware:Locky
URL:http://equityreleaseaustralia.com/t76f3g
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ENOM, INC.
Nameserver(s):nsg1.namebrightdns.com
 nsg2.namebrightdns.com
Firstseen (UTC):2016-10-26 09:55:16
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-12-04 04:19:142019-07-15 04:03:5423.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-18 04:18:152018-10-07 04:19:1052.6.46.72ec2-52-6-46-72.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-04-05 01:16:552017-05-10 01:19:5398.124.243.43Not listedAS21740ENOMAS1 - eNom, Incorporated, US- United States (US)
no2017-05-11 01:23:322017-05-13 01:21:3769.64.147.38ash.parking.localNot listedAS55002ENOMAS1 - eNom, Incorporated, US- United States (US)
no2018-11-16 04:17:242018-11-29 04:14:2454.208.56.179ec2-54-208-56-179.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-11 04:22:572018-12-03 04:13:1254.165.193.163ec2-54-165-193-163.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-16 04:17:522018-09-18 04:18:1354.152.137.87ec2-54-152-137-87.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-12 04:16:082018-10-25 04:28:1854.144.21.246ec2-54-144-21-246.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-18 04:18:142018-10-10 04:16:3452.87.45.42ec2-52-87-45-42.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-01 04:22:162018-12-03 04:13:1152.86.122.241ec2-52-86-122-241.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-14 04:17:462018-11-29 04:14:2452.73.179.54ec2-52-73-179-54.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-11 04:17:022018-09-14 04:18:3852.7.6.73ec2-52-7-6-73.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-10-26 10:29:502017-04-04 01:18:29108.179.232.254Not listedAS20013CYRUSONE - CyrusOne LLC, US- United States (US)
no2018-11-14 04:17:47never52.6.234.76ec2-52-6-234-76.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-11 04:16:592018-10-31 04:20:3452.55.164.156ec2-52-55-164-156.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-31 04:20:35never52.54.154.33ec2-52-54-154-33.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-11 04:17:022018-10-18 04:26:1352.5.251.20ec2-52-5-251-20.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-15 04:18:022018-09-18 04:18:1452.4.66.100ec2-52-4-66-100.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-26 04:23:502018-10-30 04:20:3552.3.123.192ec2-52-3-123-192.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-12 04:16:072018-11-06 04:25:4352.22.89.169ec2-52-22-89-169.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-06-25 04:20:132018-08-04 04:18:01208.91.197.46Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2017-09-21 01:15:152018-06-24 04:21:00204.11.56.48Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)

# IPs found: 22 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-10-27 01:00:41c1ba0818c697c3c1a556c7dfdcb1edd4286'720 bytesVirustotal results 15/59 (25.42%) # Not authorized
2016-10-26 10:26:32d17d1d63c242d71fcfd41fd506b8dee5278'528 bytesVirustotal results 0/54 (0.00%) n/a

Unique dropped files: 2