Locky Distribution Site :: bigwintour.com

Host Information

Locky Distribution Site:bigwintour.com
Threat:Distribution Site
Malware:Locky
URL:http://bigwintour.com/mq7v4fft
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ONLINENIC, INC.
Nameserver(s):ns1646.ztomy.com
 ns2646.ztomy.com
Firstseen (UTC):2016-11-03 15:31:46
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-01-31 08:04:132019-10-15 08:09:30204.11.56.46Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2018-09-09 08:14:322018-10-02 08:14:05192.155.108.149Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2016-11-03 17:01:012017-05-13 01:43:56210.1.58.196nsu3.4gbhost.comNot listedAS9891CSLOXINFO-AS-AP CS LOXINFO PUBLIC COMPAN[...]- Thailand (TH)
no2018-11-20 08:11:542019-01-30 08:11:46204.11.56.48Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2017-09-21 01:44:412018-09-06 08:14:56203.146.127.100NSU1.4GBHOST.COMNot listedAS4750CSLOXINFO-AS-AP CS LOXINFO PUBLIC COMPAN[...]- Thailand (TH)
no2018-09-24 08:15:282018-10-12 08:12:38192.155.108.158Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-29 08:15:39never192.155.108.157Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-10-06 08:14:312018-10-11 08:13:50192.155.108.156Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-07 08:17:022018-09-16 08:15:26192.155.108.155Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-14 08:16:392018-09-20 08:14:24192.155.108.154Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-17 08:13:56never192.155.108.152Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-30 08:16:05never151.106.5.163Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-22 08:20:032018-10-09 08:12:43192.155.108.148Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-10 08:18:10never192.155.108.147Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-15 08:13:532018-09-26 08:16:46151.106.5.173Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-21 08:18:222018-10-07 08:15:01151.106.5.172Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-12 08:16:012018-10-10 08:13:25151.106.5.171Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-18 08:15:292018-10-13 08:14:25151.106.5.169Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-23 08:14:132018-10-01 08:14:12151.106.5.168Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-10-08 08:13:44never151.106.5.167Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-28 08:16:39never151.106.5.165Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-09-08 08:16:042018-10-04 08:13:29151.106.5.164Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)

# IPs found: 22 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-03 17:00:595a3528103e7e29103cdc642add5743cf185'344 bytesVirustotal results 31/55 (56.36%) n/a

Unique dropped files: 1