Locky Distribution Site :: nxarab.net

Host Information

Locky Distribution Site:nxarab.net
Threat:Distribution Site
Malware:Locky
URL:http://nxarab.net/yr387n3
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:DOMAIN.COM, LLC
Firstseen (UTC):2016-11-25 13:47:40
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2018-03-03 01:57:202018-03-05 01:57:4547.91.162.83Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2017-03-14 01:11:552017-04-22 01:11:3569.172.201.153Not listedAS19324DOSARREST - Dosarrest Internet Security [...]- United States (US)
no2018-03-22 01:57:392018-03-23 01:55:1047.91.201.88Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-03-18 01:57:342018-03-21 01:55:5747.91.201.84Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-06-01 01:52:152018-06-29 06:17:3447.91.170.222Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-02-08 01:57:472018-03-02 01:57:0047.91.163.79Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-01-21 01:56:082018-01-23 01:54:4447.91.163.191Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-01-20 01:56:42never47.91.163.140Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-01-27 01:59:312018-01-29 02:02:1347.91.163.114Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2017-05-30 01:08:402018-01-19 01:54:24122.114.178.211Not listedAS37943CNNIC-GIANT ZhengZhou GIANT Computer Net[...]- China (CN)
no2018-03-17 01:59:06never47.90.109.114Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- Hong Kong (HK)
no2018-01-30 02:01:292018-02-07 01:58:5447.89.60.59Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- Hong Kong (HK)
no2018-01-24 01:59:302018-01-26 01:59:3147.89.60.141Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- Hong Kong (HK)
no2018-03-11 02:00:032018-03-16 02:08:2147.52.53.141Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-03-06 02:00:262018-03-10 01:58:3947.52.124.178Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2018-05-29 01:52:282018-05-31 01:52:46198.11.172.242Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2016-11-25 20:16:552017-03-13 01:10:42122.114.87.226Not listedAS37943CNNIC-GIANT ZhengZhou GIANT Computer Net[...]- China (CN)

# IPs found: 17 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-25 20:16:420a7f8c893e3dd4dd52352ec6c08385b1170'487 bytesn/an/a
2016-11-25 20:14:59758fcd6be9c2b13efb3bda6be2c6a0d6217'088 bytesVirustotal results 8/57 (14.04%) n/a

Unique dropped files: 2