Locky Distribution Site :: zhanglilai.com

Host Information

Locky Distribution Site:zhanglilai.com
Threat:Distribution Site
Malware:Locky
URL:http://zhanglilai.com/pq9ot9avqf
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:BEIJING INNOVATIVE LINKAGE TECHNOLOGY LTD. DBA DNS.COM.CN
Nameserver(s):ns1.maff.com
 ns2.maff.com
Firstseen (UTC):2016-12-08 05:58:37
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-09-18 03:48:432019-11-11 03:48:55118.107.18.20Not listedAS64050BCPL-SG BGPNET Global ASN, SG- Australia (AU)
no2018-05-31 01:25:192018-06-03 01:23:2252.86.23.17ec2-52-86-23-17.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-01-19 01:29:27never54.85.180.217ec2-54-85-180-217.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-09-30 01:08:002017-10-24 01:21:2252.87.61.120ec2-52-87-61-120.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-09-30 01:08:002017-10-24 01:21:2254.156.195.114ec2-54-156-195-114.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-01-14 01:30:272018-03-13 01:28:1354.164.198.60ec2-54-164-198-60.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-17 01:19:222017-10-18 01:19:5154.165.0.13ec2-54-165-0-13.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-07-12 03:56:202018-07-21 03:57:4354.165.156.210ec2-54-165-156-210.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-09-21 01:59:332017-10-25 01:20:1554.172.131.220ec2-54-172-131-220.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-19 01:22:372018-05-30 01:23:2654.174.212.152ec2-54-174-212-152.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-11-12 01:22:55never54.174.45.4ec2-54-174-45-4.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-03-23 01:26:542018-04-02 01:26:5054.175.183.209ec2-54-175-183-209.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-05-13 01:13:572018-06-12 01:28:1454.208.174.161ec2-54-208-174-161.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-06-21 03:54:132018-06-25 03:55:2154.208.222.184ec2-54-208-222-184.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-03-23 01:26:542018-04-02 01:26:5054.209.179.105ec2-54-209-179-105.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-08-06 03:58:122018-08-09 03:57:0654.209.58.131ec2-54-209-58-131.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-01-19 01:29:28never54.227.162.221ec2-54-227-162-221.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-03-14 01:28:102018-03-22 01:27:5754.236.221.45ec2-54-236-221-45.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-04-27 01:25:162018-06-19 03:54:4754.80.72.81ec2-54-80-72-81.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2017-10-17 01:19:232017-10-18 01:19:5054.84.126.162ec2-54-84-126-162.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-09-28 03:55:002019-09-17 03:47:08103.44.20.75Not listedAS137443POWERLINE-AS-AP POWER LINE (HK) CO., LIM[...]- Hong Kong (HK)
no2017-09-21 01:59:342018-01-04 01:28:1852.71.185.125ec2-52-71-185-125.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-12-08 07:05:362017-04-25 03:18:55122.114.82.117Not listedAS37943CNNIC-GIANT ZhengZhou GIANT Computer Net[...]- China (CN)
no2017-04-26 03:16:392017-05-12 01:53:05192.169.81.126126-81-169-192.static.reverse.lstn.netNot listedAS46475LIMESTONENETWORKS - Limestone Networks, [...]- United States (US)
no2017-11-12 01:22:54never52.206.165.49ec2-52-206-165-49.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-08 07:05:131d2861021037a95ab3f883048a2c82e1187'110 bytesVirustotal results 5/55 (9.09%) n/a

Unique dropped files: 1