Locky Distribution Site :: newshijicn.com

Host Information

Locky Distribution Site:newshijicn.com
Threat:Distribution Site
Malware:Locky
URL:http://newshijicn.com/hudoo
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:CHENGDU WEST DIMENSION DIGITAL TECHNOLOGY CO., LTD.
Nameserver(s):ns5.dnsdun.com
 ns5.dnsdun.net
Firstseen (UTC):2016-12-06 08:02:22
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-11-22 06:19:122019-10-18 06:12:5045.195.64.146Not listedAS137443ANCHGLOBAL-AS-AP Anchnet Asia Limited, H[...]- Hong Kong (HK)
no2017-04-19 01:04:382017-05-11 01:06:1750.117.113.220Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)
no2017-05-12 01:05:392017-05-19 01:02:5650.117.113.222Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)
no2018-11-19 06:19:472018-11-20 06:21:3052.5.250.89ec2-52-5-250-89.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-19 06:19:472018-11-20 06:21:3052.70.42.162ec2-52-70-42-162.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-12-06 09:25:572016-12-09 02:21:0459.188.221.70Not listedAS17444NWT-AS-AP AS number for New World Teleph[...]- Hong Kong (HK)
no2016-12-10 02:45:492017-04-18 01:05:3559.188.73.175Not listedAS17444NWT-AS-AP AS number for New World Teleph[...]- Hong Kong (HK)

# IPs found: 7 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-06 09:25:56d16a53416e830560b7d419a072e612c7190'039 bytesVirustotal results 1/55 (1.82%) n/a

Unique dropped files: 1