Locky Distribution Site :: creditwallet.net

Host Information

Locky Distribution Site:creditwallet.net
Threat:Distribution Site
Malware:Locky
URL:http://creditwallet.net/87yg756f5.exe
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):nsg1.namebrightdns.com
 nsg2.namebrightdns.com
Firstseen (UTC):2016-03-15 14:29:07
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-12-04 07:45:222019-09-19 07:37:2923.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2016-04-11 09:51:432018-04-04 01:48:55184.168.221.3ip-184-168-221-3.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-03-15 14:29:072016-04-11 09:32:22198.46.81.163ecbiz156.inmotionhosting.comNot listedAS54641 INMOTI-1 - InMotion Hosting, Inc.,US- United States (US)
no2018-10-19 07:37:592018-11-06 07:46:2052.22.89.169ec2-52-22-89-169.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-26 07:36:162018-10-28 07:40:5452.3.123.192ec2-52-3-123-192.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-18 07:41:152018-10-30 07:38:5752.5.251.20ec2-52-5-251-20.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-30 07:38:582018-10-31 07:35:1252.54.154.33ec2-52-54-154-33.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-18 07:41:152018-10-31 07:35:1252.55.164.156ec2-52-55-164-156.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-14 07:43:322018-11-15 07:41:4752.6.234.76ec2-52-6-234-76.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-14 07:43:322018-11-28 07:36:3752.73.179.54ec2-52-73-179-54.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-01 07:38:192018-12-03 07:36:4652.86.122.241ec2-52-86-122-241.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-10-19 07:37:592018-10-25 07:39:4354.144.21.246ec2-54-144-21-246.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-11 07:44:432018-12-03 07:36:4654.165.193.163ec2-54-165-193-163.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)
no2018-11-15 07:41:472018-11-28 07:36:3754.208.56.179ec2-54-208-56-179.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)

# IPs found: 14 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-03-15 14:57:1769b933a694710f8ceb314dc897a94cbe180'224 bytesVirustotal results 41/57 (71.93%) Locky

Unique dropped files: 1