Locky Distribution Site :: twdct.com

Host Information

Locky Distribution Site:twdct.com
Threat:Distribution Site
Malware:Locky
URL:http://twdct.com/hjy93JNBasdas
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:LISTED
Domain Registar:GODADDY.COM, LLC
Nameserver(s):ns1.dnsowl.com
 ns2.dnsowl.com
 ns3.dnsowl.com
Firstseen (UTC):2016-09-14 11:43:23
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-08-28 02:07:412019-09-18 02:07:1599.81.40.78ec2-99-81-40-78.eu-west-1.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- United States (US)
no2018-03-24 01:17:512018-06-11 01:13:48104.165.211.178Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)
no2018-08-28 02:21:032018-08-29 02:21:24107.161.23.204parking.namesilo.comNot listedAS3842RAMNODE - RamNode LLC, US- United States (US)
no2018-01-05 01:15:502018-03-23 01:16:38137.175.104.142mail142.5wya.comNot listedAS54600PEGTECHINC - PEG TECH INC, US- United States (US)
no2018-12-31 02:16:222019-08-27 02:07:43142.91.72.30Not listedAS395954NOBIS-TECH - Nobis Technology Group, LLC[...]- United States (US)
no2017-04-07 01:04:042017-05-05 01:03:52184.168.221.57ip-184-168-221-57.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-28 02:21:022018-08-29 02:21:24192.161.187.200192.161.187.200.static.quadranet.comNot listedAS8100ASN-QUADRANET-GLOBAL - QuadraNet, Inc, U[...]- United States (US)
no2018-08-30 02:21:002018-12-30 02:16:42192.74.245.187Not listedAS54600PEGTECHINC - PEG TECH INC, US- United States (US)
no2018-08-28 02:21:022018-08-29 02:21:25209.141.38.71parking.namesilo.comNot listedAS53667PONYNET - FranTech Solutions, US- United States (US)
no2016-09-14 12:04:14never23.92.221.18623.92.221.186Not listedAS31863DACEN-2 - Centrilogic, Inc., US- United States (US)

# IPs found: 10 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-09-14 12:02:20385bb7dd0881c32faf4bd6687c93a195259'584 bytesVirustotal results 0/54 (0.00%) n/a

Unique dropped files: 1