Locky Distribution Site :: qdweierya.com

Host Information

Locky Distribution Site:qdweierya.com
Threat:Distribution Site
Malware:Locky
URL:http://qdweierya.com/qtubp
Host Status:offline
Blacklist check:Spamhaus DBL:LISTED
 SURBL:Not Listed
Domain Registar:HICHINA ZHICHENG TECHNOLOGY LTD.
Nameserver(s):ns5.dnsdun.com
 ns5.dnsdun.net
Firstseen (UTC):2016-11-23 10:47:58
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2017-12-24 01:04:532018-01-12 01:04:31103.233.81.78103.233.81.78.static.krypt.comNot listedAS45652VPLS VPLS ASIA, TH- Thailand (TH)
no2017-02-03 05:22:442017-08-30 01:37:29103.82.53.118Not listedAS58879ANCHNET Shanghai Anchang Network Securit[...]- China (CN)
no2018-05-03 01:03:042019-09-13 01:12:01104.202.131.136136.131-202-104.rdns.scalabledns.comNot listedAS18978ENZUINC-US - Enzu Inc, US- United States (US)
no2016-12-20 22:32:372017-02-02 05:22:25118.99.11.36Not listedAS38186FTG-AS-AP Forewin Telecom Group Limited,[...]- Hong Kong (HK)
no2017-08-31 01:39:092017-10-06 02:14:4947.89.58.141Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- Hong Kong (HK)
no2016-11-23 12:51:382016-12-19 19:31:0647.90.41.123Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- Hong Kong (HK)
no2017-11-13 02:20:482017-11-16 02:20:3850.63.202.51ip-50-63-202-51.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 7 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-23 12:51:367611de03c29ea02be9609bd039ba5b58145'006 bytesVirustotal results 5/54 (9.26%) n/a

Unique dropped files: 1