Locky Distribution Site :: widenotions.com
Host Information
| Locky Distribution Site: | widenotions.com | |
|---|---|---|
| Threat: | Distribution Site | |
| Malware: | Locky | |
| URL: | http://widenotions.com/bh7188 | |
| Host Status: | ||
| Blacklist check: | Spamhaus DBL: | |
| SURBL: | ||
| Domain Registar: | ENOM, INC. | |
| Nameserver(s): | nsg1.namebrightdns.com | |
| nsg2.namebrightdns.com | ||
| Firstseen (UTC): | 2016-10-04 09:55:45 | |
| Lastseen (UTC): | never | |
Associated IP addresses
The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.
| Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address). yes = Active A record no = Historical record) | Firstseen (UTC) | Lastseen (UTC) | IP address | Hostname | SBL | AS number | AS name | Country |
|---|---|---|---|---|---|---|---|---|
| yes | 2019-10-13 01:31:01 | 2019-12-06 01:28:16 | 23.20.239.12 | ec2-23-20-239-12.compute-1.amazonaws.com | Not listed | AS14618 | AMAZON-AES - Amazon.com, Inc., US |  United States (US) |
| no | 2019-10-12 01:30:57 | never | 18.211.9.206 | ec2-18-211-9-206.compute-1.amazonaws.com | Not listed | AS14618 | AMAZON-AES - Amazon.com, Inc., US | United States (US) |
| no | 2016-12-07 15:11:44 | 2018-05-04 01:06:51 | 198.54.114.176 | server228-1.web-hosting.com | Not listed | AS22612 | NAMECHEAP-NET - Namecheap, Inc., US | United States (US) |
| no | 2016-10-04 16:15:35 | 2016-12-03 14:31:43 | 198.54.115.176 | s228.web-hosting.com | Not listed | AS22612 | NAMECHEAP-NET - Namecheap, Inc., US | United States (US) |
| no | 2018-05-05 01:45:06 | 2018-06-15 01:05:27 | 198.54.117.200 | Not listed | AS22612 | NAMECHEAP-NET - Namecheap, Inc., US | United States (US) | |
| no | 2019-01-30 01:33:07 | 2019-07-27 01:27:49 | 204.11.56.46 | Not listed | AS40034 | CONFLUENCE-NETWORK-INC - Confluence Netw[...] |  Virgin Islands, British (VG) | |
| no | 2018-07-23 01:43:01 | 2019-01-29 01:33:04 | 204.11.56.48 | Not listed | AS40034 | CONFLUENCE-NETWORK-INC - Confluence Netw[...] | Virgin Islands, British (VG) | |
| no | 2019-07-28 01:28:14 | 2019-09-04 01:29:25 | 208.91.197.46 | Not listed | AS40034 | CONFLUENCE-NETWORK-INC - Confluence Netw[...] | Virgin Islands, British (VG) |
# IPs found: 8 (max. 25)
Dropped files
Latest 100 files (malware samples) dropped by this distribution site.
| Firstseen (UTC) | MD5 hash | Filesize | VT | Signature |
|---|---|---|---|---|
| 2016-10-04 16:15:24 | 65dbaab40274bc0ac84d73bc6579bc23 | 163'844 bytes |  2/55 (3.64%)
| n/a |
Unique dropped files: 1