Locky Distribution Site :: talk2win.com

Host Information

Locky Distribution Site:talk2win.com
Threat:Distribution Site
Malware:Locky
URL:http://talk2win.com/mwcwwshdw
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):nsg1.namebrightdns.com
 nsg2.namebrightdns.com
Firstseen (UTC):2016-12-02 18:25:07
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-08-01 08:01:492019-09-15 07:55:5723.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-06-28 08:10:27never50.63.202.93ip-50-63-202-93.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-26 01:31:592018-01-22 02:03:33160.153.47.231ip-160-153-47-231.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-24 08:02:20never50.63.202.92ip-50-63-202-92.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-07-02 07:58:59never50.63.202.91ip-50-63-202-91.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-30 08:11:21never50.63.202.88ip-50-63-202-88.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-27 08:08:482019-07-14 08:05:4050.63.202.86ip-50-63-202-86.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-25 08:09:292018-06-29 08:10:2050.63.202.84ip-50-63-202-84.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-29 07:59:012019-07-13 07:59:1750.63.202.82ip-50-63-202-82.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-23 08:06:072019-07-24 08:05:5950.63.202.74ip-50-63-202-74.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-26 08:01:59never50.63.202.70ip-50-63-202-70.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-30 08:06:182019-07-27 08:09:5850.63.202.69ip-50-63-202-69.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-03 08:07:242019-07-20 08:03:4850.63.202.67ip-50-63-202-67.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-23 02:01:452019-06-22 07:59:0050.63.202.32ip-50-63-202-32.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-07-08 08:02:55never184.168.221.95ip-184-168-221-95.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-26 08:12:52never184.168.221.81ip-184-168-221-81.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-23 07:57:132019-07-07 08:02:02184.168.221.79ip-184-168-221-79.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-07-15 08:02:422019-07-16 08:06:17184.168.221.74ip-184-168-221-74.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-07-17 08:00:192019-07-26 08:02:27184.168.221.72ip-184-168-221-72.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-06-25 08:00:032019-06-27 07:55:32184.168.221.68ip-184-168-221-68.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-07-28 08:01:23never184.168.221.66ip-184-168-221-66.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-24 08:01:53never184.168.221.37ip-184-168-221-37.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-22 01:33:09never184.168.221.35ip-184-168-221-35.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-23 08:02:34never184.168.221.34ip-184-168-221-34.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-25 08:01:23never184.168.221.33ip-184-168-221-33.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-02 23:46:5949e8205b712933841aa31c814dfeb2a4271'225 bytesVirustotal results 9/56 (16.07%) n/a

Unique dropped files: 1