Locky Distribution Site :: payserairan.com

Host Information

Locky Distribution Site:payserairan.com
Threat:Distribution Site
Malware:Locky
URL:http://payserairan.com/7fg3g
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):ns1626.ztomy.com
 ns2626.ztomy.com
Firstseen (UTC):2016-10-28 11:57:42
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-02-11 06:27:552019-07-16 06:26:46204.11.56.48Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2017-02-02 09:27:09never50.63.202.23ip-50-63-202-23.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-12-21 15:30:112018-08-21 06:39:3050.63.202.1ip-50-63-202-1.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-04-11 01:26:042018-05-27 01:47:2850.63.202.10ip-50-63-202-10.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-01-21 09:25:152018-07-16 06:37:2750.63.202.11ip-50-63-202-11.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-18 01:29:162018-03-08 01:51:4850.63.202.12ip-50-63-202-12.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-11-05 01:50:462018-02-13 01:50:5050.63.202.13ip-50-63-202-13.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-01-16 09:30:272017-05-13 01:26:0350.63.202.15ip-50-63-202-15.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-16 01:31:422017-09-26 01:38:2050.63.202.16ip-50-63-202-16.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-12-22 09:12:382016-12-30 09:39:2250.63.202.17ip-50-63-202-17.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-16 01:46:312018-07-29 06:40:5250.63.202.18ip-50-63-202-18.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-01-12 09:30:122018-08-24 07:33:1750.63.202.19ip-50-63-202-19.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-10 06:40:292018-07-13 06:39:1850.63.202.2ip-50-63-202-2.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-01-05 09:52:152018-07-06 06:37:4250.63.202.20ip-50-63-202-20.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-03-16 01:35:052017-09-25 01:41:0950.63.202.21ip-50-63-202-21.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-09 06:22:512017-12-24 06:39:4350.63.202.22ip-50-63-202-22.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-01-26 09:30:372018-05-28 01:43:4750.63.202.9ip-50-63-202-9.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-05-09 01:25:262018-05-24 01:43:3850.63.202.24ip-50-63-202-24.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-04 09:39:202018-04-05 01:51:4650.63.202.25ip-50-63-202-25.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-04-07 01:28:412018-05-02 01:43:2050.63.202.26ip-50-63-202-26.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-03-07 01:29:372018-05-31 01:45:5150.63.202.27ip-50-63-202-27.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-22 01:30:042018-06-10 01:46:1150.63.202.28ip-50-63-202-28.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-24 01:49:22never50.63.202.29ip-50-63-202-29.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-13 01:47:272018-07-09 06:40:5350.63.202.3ip-50-63-202-3.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-09-28 01:40:562018-08-19 06:40:0450.63.202.30ip-50-63-202-30.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-10-29 01:00:3020db9dbf8ce79e80f8b0a0c2b9390a33237'568 bytesVirustotal results 5/60 (8.33%) # Not authorized
2016-10-28 12:52:1686de7c69b610ccfe56143f2cd6a53158266'240 bytesVirustotal results 0/55 (0.00%) n/a

Unique dropped files: 2