Locky Distribution Site :: business-cambodia.com

Host Information

Locky Distribution Site:business-cambodia.com
Threat:Distribution Site
Malware:Locky
URL:http://business-cambodia.com/he8wtc
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:LIQUIDNET LTD.
Nameserver(s):gina.ns.cloudflare.com
 lou.ns.cloudflare.com
Firstseen (UTC):2016-10-31 11:06:56
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-07-14 06:11:222019-09-22 06:04:06104.28.14.37Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
yes2019-07-14 06:11:222019-09-22 06:04:06104.28.15.37Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-06-11 06:08:162019-06-17 06:08:32104.31.92.60Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-05-11 06:05:462019-05-12 06:12:43104.26.5.89Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-12-08 06:15:49never104.27.144.89Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-12-08 06:15:48never104.27.145.89Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-07-08 06:11:242019-07-11 06:10:53104.28.16.37Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-07-08 06:11:242019-07-11 06:10:53104.28.17.37Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-02-20 01:47:452018-04-23 01:45:07104.28.26.222Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-02-20 01:47:462018-04-23 01:45:08104.28.27.222Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-05-11 06:05:462019-05-12 06:12:43104.26.4.89Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-06-11 06:08:152019-06-17 06:08:33104.31.93.60Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2016-10-31 11:22:002017-02-11 09:28:59107.180.2.60ip-107-180-2-60.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-12 01:49:302018-05-28 01:41:26148.66.152.147Not listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- Singapore (SG)
no2018-12-09 06:14:152018-12-10 06:19:27148.66.153.32Not listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- Singapore (SG)
no2018-05-29 01:43:132018-07-10 06:18:56148.72.199.65ip-148-72-199-65.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-12-11 06:12:572019-05-14 06:06:16192.169.153.249ip-192-169-153-249.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-12 09:44:512017-05-13 01:23:21198.54.115.35b32.web-hosting.comNot listedAS22612NAMECHEAP-NET - Namecheap, Inc., US- United States (US)
no2017-09-21 01:32:172018-02-11 01:47:0345.76.184.23545.76.184.235.vultr.comNot listedAS20473AS-CHOOPA - Choopa, LLC, US- Singapore (SG)
no2018-04-24 01:43:352018-05-23 01:41:05104.25.16.101Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-07-11 06:20:03never104.20.93.9Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-05-15 06:12:512019-06-10 06:12:38104.24.10.11Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-05-24 01:40:58never104.24.100.156Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-05-24 01:40:57never104.24.101.156Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-05-15 06:12:512019-06-10 06:12:39104.24.11.11Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-10-31 11:21:59525020f21cc1d7c815d86895f33436c8238'080 bytesVirustotal results 14/57 (24.56%) n/a

Unique dropped files: 1