Locky Distribution Site :: galelaure.com

Host Information

Locky Distribution Site:galelaure.com
Threat:Distribution Site
Malware:Locky
URL:http://galelaure.com/gvn4j9eq
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ENOM, INC.
Nameserver(s):nsg1.namebrightdns.com
 nsg2.namebrightdns.com
Firstseen (UTC):2016-10-03 10:34:30
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-05-21 01:59:232019-11-17 02:00:1123.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-10-03 12:37:212016-11-02 09:43:09129.121.176.181simply.asoshared.comNot listedAS36444NEXCESS-NET - NEXCESS.NET L.L.C., US- United States (US)
no2019-02-04 02:03:412019-02-10 02:02:23143.95.37.228krieger.asoshared.comNot listedAS62729ASMALLORANGE1 - A Small Orange LLC, US- United States (US)
no2018-04-07 01:10:492018-04-16 01:09:50209.200.154.38a209-200-154-38.deploy.static.akamaitechnologies.comNot listedAS32787PROLEXIC-TECHNOLOGIES-DDOS-MITIGATION-NE[...]- United States (US)
no2017-05-11 02:18:142017-05-13 02:13:0069.64.147.45ash.parking.localNot listedAS22557ENOMAS1 - eNom, Incorporated, US- United States (US)
no2019-02-11 02:01:212019-04-09 02:01:1375.21.17.176Not listedAS7018ATT-INTERNET4 - AT&T Services, Inc., US- United States (US)
no2019-04-10 01:59:502019-05-14 01:59:3091.195.240.87Not listedAS47846SEDO-AS, DE- Germany (DE)
no2019-04-22 01:59:332019-04-27 01:57:1591.195.240.89Not listedAS47846SEDO-AS, DE- Germany (DE)
no2017-04-09 02:09:052017-05-10 02:11:1098.124.243.42Not listedAS21740ENOMAS1 - eNom, Incorporated, US- United States (US)

# IPs found: 9 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-10-03 12:37:13db535f07fcb757f20ad52d6ebaeb4a58163'332 bytesn/an/a

Unique dropped files: 1