Locky Distribution Site :: chuvafeatherstone.com

Host Information

Locky Distribution Site:chuvafeatherstone.com
Threat:Distribution Site
Malware:Locky
URL:http://chuvafeatherstone.com/rve6j
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):ns1.cargocollective.com
 ns2.cargocollective.com
Firstseen (UTC):2016-10-26 12:05:28
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-02-24 01:25:212019-09-19 03:38:5835.169.40.107ec2-35-169-40-107.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
yes2018-02-24 01:25:222019-09-19 03:38:5734.225.31.148ec2-34-225-31-148.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-10-26 12:34:272016-11-22 09:56:02208.76.84.37harvey.tchmachines.comNot listedAS53292ROUTE-256 - ManagedWay, US- United States (US)
no2017-10-20 01:23:332017-11-20 01:22:3854.236.106.76ec2-54-236-106-76.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-20 01:23:332017-11-20 01:22:3854.164.254.80ec2-54-164-254-80.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-21 01:23:442017-11-23 01:21:1352.203.9.27ec2-52-203-9-27.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-24 01:22:522017-11-30 03:43:3552.20.10.114ec2-52-20-10-114.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-21 01:23:452017-11-23 01:21:1452.1.189.234ec2-52-1-189-234.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-10 01:19:422017-10-18 01:22:0350.63.202.50ip-50-63-202-50.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-06 01:19:332017-10-07 01:19:5050.63.202.33ip-50-63-202-33.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-11-24 01:22:522017-11-30 03:43:3634.237.162.211ec2-34-237-162-211.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-12 01:22:15never184.168.221.41ip-184-168-221-41.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-05-18 01:10:442017-10-05 03:02:26198.49.23.145Not listedAS53831SQUARESPACE - Squarespace, Inc., US- United States (US)
no2017-05-18 01:10:432017-10-05 03:02:26198.49.23.144Not listedAS53831SQUARESPACE - Squarespace, Inc., US- United States (US)
no2016-11-22 16:21:532017-05-17 01:10:57198.38.77.185bankson.tchmachines.comNot listedAS53292ROUTE-256 - ManagedWay, US- United States (US)
no2017-05-18 01:10:442017-10-05 03:02:25198.185.159.145Not listedAS53831SQUARESPACE - Squarespace, Inc., US- United States (US)
no2017-05-18 01:10:432017-10-05 03:02:25198.185.159.144Not listedAS53831SQUARESPACE - Squarespace, Inc., US- United States (US)
no2017-10-08 01:19:082017-10-19 01:22:05184.168.221.63ip-184-168-221-63.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-16 01:21:58never184.168.221.62ip-184-168-221-62.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-15 01:22:252017-10-17 01:22:39184.168.221.58ip-184-168-221-58.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-10-09 01:20:58never184.168.221.44ip-184-168-221-44.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 21 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-10-26 12:34:261f0a886837d97abdc484ddff671c9e6f248'320 bytesVirustotal results 25/57 (43.86%) n/a

Unique dropped files: 1