Locky Distribution Site :: jingshieye.com

Host Information

Locky Distribution Site:jingshieye.com
Threat:Distribution Site
Malware:Locky
URL:http://jingshieye.com/mycn9y5a
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:CHENGDU WEST DIMENSION DIGITAL TECHNOLOGY CO., LTD.
Nameserver(s):ns1.dns.com
 ns2.dns.com
Firstseen (UTC):2016-11-13 09:10:22
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-09-25 05:21:052019-11-13 05:17:4196.44.175.187admin2.newspoliticsus.comNot listedAS8100ASN-QUADRANET-GLOBAL - QuadraNet Enterpr[...]- United States (US)
no2016-11-13 11:03:482017-04-16 01:10:57116.255.250.65Not listedAS37943CNNIC-GIANT ZhengZhou GIANT Computer Net[...]- China (CN)
no2018-08-10 05:35:212018-08-22 05:32:15150.129.81.156Not listedAS55933CLOUDIE-AS-AP Cloudie Limited, HK- Hong Kong (HK)
no2019-03-03 05:18:332019-06-27 05:19:30154.215.200.205Not listedAS134548DXTL-HK DXTL Tseung Kwan O Service, HK- United States (US)
no2018-08-23 05:31:392019-03-02 05:16:42154.95.160.173Not listedAS134548DXTL-HK DXTL Tseung Kwan O Service, HK- United States (US)
no2019-09-12 05:16:132019-09-15 05:17:0147.88.84.51Not listedAS45102CNNIC-ALIBABA-US-NET-AP Alibaba (US) Tec[...]- United States (US)
no2017-06-30 01:04:412018-06-26 05:34:1047.89.2.181Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- Hong Kong (HK)
no2019-09-12 05:16:132019-09-15 05:17:0247.91.202.66Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2019-09-10 05:19:312019-09-15 05:17:0247.91.205.63Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2017-04-17 01:10:592017-05-11 01:11:4550.117.113.220Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)
no2017-05-12 01:11:152017-05-19 01:07:1050.117.113.222Not listedAS18779EGIHOSTING - EGIHosting, US- United States (US)

# IPs found: 11 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-13 11:03:32e32374306450f8938736f50bf2dfba04119'296 bytesVirustotal results 40/56 (71.43%) n/a

Unique dropped files: 1