Locky Distribution Site :: saachi.co

Host Information

Locky Distribution Site:saachi.co
Threat:Distribution Site
Malware:Locky
URL:http://saachi.co/system/logs/43ghy8n
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, INC.
Nameserver(s):ns71.domaincontrol.com
 ns72.domaincontrol.com
Firstseen (UTC):2016-03-09 12:48:30
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-01-11 07:48:422019-11-22 07:44:3850.63.202.54ip-50-63-202-54.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-16 01:54:212019-07-08 07:46:4350.63.202.63ip-50-63-202-63.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-05-25 00:25:282016-06-06 17:09:3552.0.16.12ec2-52-0-16-12.compute-1.amazonaws.comNot listedAS14618- United States (US)
no2018-03-28 01:54:012019-03-24 07:38:2750.63.202.62ip-50-63-202-62.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-04 01:57:442018-01-09 01:56:4150.63.202.61ip-50-63-202-61.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-08 07:46:482018-01-07 01:58:1550.63.202.60ip-50-63-202-60.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-11-21 07:53:342019-08-21 07:39:2950.63.202.59ip-50-63-202-59.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-04 01:51:142019-11-14 07:45:3150.63.202.58ip-50-63-202-58.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-09 07:45:272019-01-10 07:51:5750.63.202.57ip-50-63-202-57.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-11-27 01:49:292018-03-14 01:54:0850.63.202.56ip-50-63-202-56.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-20 01:56:562018-01-30 01:55:0350.63.202.55ip-50-63-202-55.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-12 01:56:072018-12-31 07:51:0850.63.202.53ip-50-63-202-53.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-23 01:53:182019-06-07 07:41:2350.63.202.51ip-50-63-202-51.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-08-15 07:42:072019-09-10 07:40:4650.63.202.49ip-50-63-202-49.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-11-25 07:56:182019-03-30 07:45:3750.63.202.48ip-50-63-202-48.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-12 01:57:162019-06-23 07:40:4950.63.202.47ip-50-63-202-47.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-18 07:54:442019-01-02 07:49:0750.63.202.46ip-50-63-202-46.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-11-03 07:49:272019-05-18 07:47:4050.63.202.44ip-50-63-202-44.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-01-09 09:23:272019-10-20 07:41:4950.63.202.43ip-50-63-202-43.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-15 01:54:312018-03-04 01:57:0350.63.202.42ip-50-63-202-42.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-04-11 18:15:392016-04-14 18:09:1952.3.127.100ec2-52-3-127-100.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-03-09 12:48:302016-04-11 17:56:2765.254.248.14565-254-248-145.yourhostingaccount.comNot listedAS29873 BIZLAND-SD - The Endurance Internationa[...]- United States (US)
no2016-05-31 10:37:092016-05-31 22:53:1254.210.16.230ec2-54-210-16-230.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-04-11 18:15:392016-04-14 18:09:1952.86.210.34ec2-52-86-210-34.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-05-07 21:21:552016-05-08 22:20:3052.86.136.216ec2-52-86-136-216.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-03-09 13:29:25252957f37b8bd7a57473eab5f1a65d5c173'056 bytesVirustotal results 12/57 (21.05%) n/a

Unique dropped files: 1