Locky Distribution Site :: zhizunwangchao.com

Host Information

Locky Distribution Site:zhizunwangchao.com
Threat:Distribution Site
Malware:Locky
URL:http://zhizunwangchao.com/lmatuammz
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:BEIJING INNOVATIVE LINKAGE TECHNOLOGY LTD. DBA DNS.COM.CN
Nameserver(s):ns1.maff.com
 ns2.maff.com
Firstseen (UTC):2016-12-08 05:51:40
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-05-31 04:15:522019-10-19 04:13:50112.175.238.124Not listedAS4766KIXS-AS-KR Korea Telecom, KR- Korea, Republic of (KR)
no2019-03-08 04:16:192019-05-30 04:15:09104.164.78.27Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)
no2016-12-08 07:17:202017-01-07 03:14:51122.114.157.33Not listedAS37943- China (CN)
no2017-01-09 03:14:382017-05-12 01:57:25122.114.89.240Not listedAS37943CNNIC-GIANT ZhengZhou GIANT Computer Net[...]- China (CN)
no2018-01-20 01:30:402018-10-26 04:21:37160.124.82.233Not listedAS132839POWERLINE-AS-AP POWER LINE (HK) CO., LIM[...]- South Africa (ZA)
no2018-11-28 04:18:522018-12-02 04:22:2752.5.250.89ec2-52-5-250-89.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-12-03 04:18:49never52.54.14.123ec2-52-54-14-123.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-28 04:18:522018-12-02 04:22:2752.70.42.162ec2-52-70-42-162.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-12-03 04:18:50never52.73.222.18ec2-52-73-222-18.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-25 01:26:26never54.173.246.46ec2-54-173-246-46.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-24 04:20:052018-11-27 04:21:3054.175.18.20ec2-54-175-18-20.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-24 04:20:062018-11-27 04:21:3054.209.113.206ec2-54-209-113-206.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-25 01:26:27never54.82.132.104ec2-54-82-132-104.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)

# IPs found: 13 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-08 07:17:01e024e1fbf2dbdca0fdcfe4cff3939c29187'110 bytesVirustotal results 3/54 (5.56%) n/a

Unique dropped files: 1