Locky Distribution Site :: onefilmy.com

Host Information

Locky Distribution Site:onefilmy.com
Threat:Distribution Site
Malware:Locky
URL:http://onefilmy.com/afdIJGY8766gyu
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):jm1.dns.com
 jm2.dns.com
Firstseen (UTC):2016-09-15 11:17:38
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-06-17 01:33:012019-09-22 01:32:46156.239.86.193Not listedAS134548DXTL-HK DXTL Tseung Kwan O Service, HK- United States (US)
no2019-04-04 01:34:282019-05-04 01:32:5950.63.202.70ip-50-63-202-70.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-05-07 01:52:392018-06-21 01:46:2254.208.77.124ec2-54-208-77-124.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-07-29 01:47:042019-04-01 01:34:3952.58.78.16ec2-52-58-78-16.eu-central-1.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Germany (DE)
no2019-04-03 01:34:16never50.63.202.94ip-50-63-202-94.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-05 01:33:322019-05-05 01:32:2850.63.202.87ip-50-63-202-87.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-12 01:10:242018-04-22 01:09:1250.63.202.85ip-50-63-202-85.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-05-04 01:10:152019-04-25 01:31:2950.63.202.79ip-50-63-202-79.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-01 01:10:302018-04-27 01:09:1650.63.202.77ip-50-63-202-77.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-06 01:33:302019-05-06 01:32:2950.63.202.76ip-50-63-202-76.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-13 01:31:562019-04-26 07:05:0350.63.202.75ip-50-63-202-75.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-05 01:11:012018-05-06 01:52:3350.63.202.73ip-50-63-202-73.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-14 01:31:492019-04-29 01:32:2750.63.202.72ip-50-63-202-72.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-09-15 11:33:302016-09-19 17:19:32104.24.118.154Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2019-04-15 01:34:182019-05-03 01:32:2950.63.202.66ip-50-63-202-66.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-06 01:10:332018-04-18 01:09:03184.168.221.92ip-184-168-221-92.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-20 01:10:092018-04-30 01:09:28184.168.221.90ip-184-168-221-90.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-04 01:10:462018-05-03 01:09:32184.168.221.88ip-184-168-221-88.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-31 01:09:492018-04-07 01:10:30184.168.221.80ip-184-168-221-80.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-13 01:10:492018-05-02 01:09:27184.168.221.77ip-184-168-221-77.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-02 01:11:172018-04-26 01:12:09184.168.221.70ip-184-168-221-70.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-02 01:34:52never184.168.221.65ip-184-168-221-65.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-22 01:46:282018-07-28 01:46:50184.168.221.104ip-184-168-221-104.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-09-15 11:33:302016-09-19 17:19:31104.24.119.154Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)

# IPs found: 24 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-09-15 11:30:242bec60b3e5d5b8644c50ad2e3ca8eead258'560 bytesn/an/a

Unique dropped files: 1