Locky Distribution Site :: wearandgojeans.com

Host Information

Locky Distribution Site:wearandgojeans.com
Threat:Distribution Site
Malware:Locky
URL:http://wearandgojeans.com/1324w
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Firstseen (UTC):2016-12-07 09:52:17
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2016-12-07 12:24:502016-12-12 16:08:48104.28.4.223Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2016-12-07 12:24:502016-12-12 16:08:47104.28.5.223Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2018-06-20 05:03:542019-02-01 04:58:14151.101.1.195Not listedAS54113FASTLY - Fastly, US- United States (US)
no2018-06-20 05:03:542019-02-01 04:58:15151.101.65.195Not listedAS54113FASTLY - Fastly, US- United States (US)
no2019-02-15 04:57:26never184.168.221.64ip-184-168-221-64.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-03 04:58:052019-02-26 04:57:14184.168.221.66ip-184-168-221-66.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-12 05:00:512019-03-05 04:57:05184.168.221.70ip-184-168-221-70.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-13 04:58:362019-02-24 04:57:50184.168.221.75ip-184-168-221-75.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-02 03:13:132019-02-16 04:57:09184.168.221.82ip-184-168-221-82.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-12 03:26:072018-06-17 01:34:29216.70.123.96Not listedAS31815MEDIATEMPLE - Media Temple, Inc., US- United States (US)
no2018-06-18 01:34:02never50.63.202.41ip-50-63-202-41.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-14 04:58:452019-03-04 04:59:0450.63.202.79ip-50-63-202-79.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-21 04:55:492019-03-09 04:57:4450.63.202.86ip-50-63-202-86.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-08 05:02:352019-03-10 04:56:0750.63.202.90ip-50-63-202-90.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 14 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-07 12:23:32d870ce030ffc2cb3075e66369bf67468176'128 bytesVirustotal results 11/56 (19.64%) n/a

Unique dropped files: 1