Locky Distribution Site :: thanprints.com

Host Information

Locky Distribution Site:thanprints.com
Threat:Distribution Site
Malware:Locky
URL:http://thanprints.com/pkovldxh
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ONLINENIC, INC.
Nameserver(s):ns1626.ztomy.com
 ns2626.ztomy.com
Firstseen (UTC):2016-12-02 18:29:44
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-06-12 07:54:232019-12-08 07:58:43204.11.56.48Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2019-04-03 07:51:10never162.210.196.173Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2016-12-02 23:44:472019-03-30 07:49:0861.19.251.181ns137.naxza.comNot listedAS9931CAT-AP The Communication Authoity of Tha[...]- Thailand (TH)
no2019-04-02 07:47:532019-04-09 07:49:52199.115.116.162Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-04-06 07:47:25never192.155.108.158Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-04 07:49:272019-04-28 07:51:09192.155.108.157Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-16 07:48:512019-04-27 07:48:36192.155.108.155Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-12 07:53:202019-04-22 07:47:35192.155.108.154Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-29 07:50:46never192.155.108.153Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-11 07:48:152019-04-18 07:55:35192.155.108.150Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-17 07:53:082019-04-21 07:54:10151.106.5.163Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-05-04 07:58:21never162.210.196.171Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-05-05 07:52:38never151.106.5.174Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-08 07:48:422019-04-23 07:53:08151.106.5.172Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-19 07:53:022019-04-30 07:52:46151.106.5.171Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-25 07:49:262019-05-02 07:53:53151.106.5.170Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-10 07:51:142019-04-14 07:48:12151.106.5.167Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-13 07:50:29never151.106.5.166Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-05-03 07:50:16never151.106.5.165Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2019-04-20 07:52:21never151.106.5.164Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)

# IPs found: 20 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-02 23:44:453d3179b45d083e7b11967c226558e8df271'225 bytesn/an/a

Unique dropped files: 1