Locky Distribution Site :: sgvillage.com

Host Information

Locky Distribution Site:sgvillage.com
Threat:Distribution Site
Malware:Locky
URL:http://sgvillage.com/54ghnnuo
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:ENOM, INC.
Nameserver(s):nsg1.namebrightdns.com
 nsg2.namebrightdns.com
Firstseen (UTC):2016-07-18 10:55:27
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-12-04 01:37:502019-09-17 01:29:3423.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-19 01:31:362018-10-25 01:31:3854.144.21.246ec2-54-144-21-246.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-07-07 01:00:462017-07-26 01:00:3469.64.147.44ash.parking.localNot listedAS55002ENOMAS1 - eNom, Incorporated, US- United States (US)
no2017-09-30 01:04:342017-10-24 01:05:4354.156.195.114ec2-54-156-195-114.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-01-14 01:07:442018-03-13 01:04:4454.164.198.60ec2-54-164-198-60.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-18 01:04:42never54.165.0.13ec2-54-165-0-13.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-11 01:37:572018-12-03 01:30:1554.165.193.163ec2-54-165-193-163.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-09-10 01:03:082017-10-25 01:04:5654.172.131.220ec2-54-172-131-220.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-19 01:05:222018-04-04 01:05:4254.174.212.152ec2-54-174-212-152.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-12 01:05:05never54.174.45.4ec2-54-174-45-4.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-03-23 01:06:152018-04-02 01:05:5254.175.183.209ec2-54-175-183-209.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-14 01:36:022018-11-29 01:29:5154.208.56.179ec2-54-208-56-179.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-03-23 01:06:152018-04-02 01:05:5254.209.179.105ec2-54-209-179-105.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-01-19 01:06:09never54.227.162.221ec2-54-227-162-221.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-03-14 01:05:332018-03-22 01:06:1854.236.221.45ec2-54-236-221-45.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-18 01:04:41never54.84.126.162ec2-54-84-126-162.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-01-19 01:06:06never54.85.180.217ec2-54-85-180-217.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-06-30 01:00:462017-07-06 01:00:4369.64.147.36ash.parking.localNot listedAS55002ENOMAS1 - eNom, Incorporated, US- United States (US)
no2017-07-27 01:01:332017-08-03 01:00:4469.64.147.38ash.parking.localNot listedAS55002ENOMAS1 - eNom, Incorporated, US- United States (US)
no2016-07-18 11:26:112017-06-29 01:00:49143.95.239.82ip-143-95-239-82.iplocalNot listedAS36024COLO4-CO - Colo4, LLC, US- United States (US)
no2017-09-20 01:03:27never52.6.86.86ec2-52-6-86-86.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-09-20 01:03:27never52.0.180.15ec2-52-0-180-15.compute-1.amazonaws.comNot listedAS16509AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-12 01:05:05never52.206.165.49ec2-52-206-165-49.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-19 01:31:352018-11-06 01:36:3952.22.89.169ec2-52-22-89-169.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-26 01:30:592018-10-30 01:30:2852.3.123.192ec2-52-3-123-192.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-07-18 15:12:067b9056f3d5783e00aadd967b990f672c277'687 bytesVirustotal results 7/53 (13.21%) n/a
2016-07-18 11:26:069017a6d7eea1f36145701ab99a14a9aa320'000 bytesVirustotal results 4/55 (7.27%) n/a

Unique dropped files: 2