Locky Distribution Site :: webberm.com

Host Information

Locky Distribution Site:webberm.com
Threat:Distribution Site
Malware:Locky
URL:http://webberm.com/nr4c9
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ONLINENIC, INC.
Nameserver(s):nsg1.namebrightdns.com
 nsg2.namebrightdns.com
Firstseen (UTC):2016-09-30 05:18:38
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-12-04 03:34:312019-08-18 03:23:2223.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-31 03:32:30never52.54.154.33ec2-52-54-154-33.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-15 03:35:032018-11-29 03:31:0354.208.56.179ec2-54-208-56-179.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-11 03:36:222018-12-03 03:31:4554.165.193.163ec2-54-165-193-163.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-16 03:35:462018-09-18 03:35:5454.152.137.87ec2-54-152-137-87.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-13 03:34:372018-10-25 03:35:2054.144.21.246ec2-54-144-21-246.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-18 03:35:542018-10-10 03:34:3352.87.45.42ec2-52-87-45-42.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-01 03:32:232018-12-03 03:31:4552.86.122.241ec2-52-86-122-241.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-14 03:35:382018-11-29 03:31:0352.73.179.54ec2-52-73-179-54.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-03 03:35:202018-09-14 03:36:3752.7.6.73ec2-52-7-6-73.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-18 03:35:542018-10-07 03:36:1552.6.46.72ec2-52-6-46-72.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-14 03:35:382018-11-15 03:35:0452.6.234.76ec2-52-6-234-76.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-11 03:34:332018-10-31 03:32:2952.55.164.156ec2-52-55-164-156.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-04-02 01:13:322017-04-27 01:29:02141.8.226.19Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Switzerland (CH)
no2018-09-03 03:35:202018-10-18 03:35:0852.5.251.20ec2-52-5-251-20.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-15 03:35:412018-09-18 03:35:5552.4.66.100ec2-52-4-66-100.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-26 03:33:432018-10-30 03:33:4452.3.123.192ec2-52-3-123-192.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-13 03:34:372018-11-06 03:37:1752.22.89.169ec2-52-22-89-169.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-17 03:37:29never34.195.144.62ec2-34-195-144-62.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-09-30 05:49:342017-04-01 01:11:41210.1.61.133ns3.4gbhost.comNot listedAS4750CSLOXINFO-AS-AP CS LOXINFO PUBLIC COMPAN[...]- Thailand (TH)
no2017-04-28 01:31:382017-05-07 01:11:58209.99.64.25209-99-64-25.fwd.datafoundry.comNot listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- United States (US)
no2018-06-18 01:20:152018-07-27 03:37:56208.91.197.46Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2017-06-14 01:11:222018-06-17 01:18:32204.11.56.48Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)

# IPs found: 23 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-09-30 05:49:321b93532275daddf9632fb20d10b7cac5162'820 bytesn/an/a

Unique dropped files: 1