Locky Distribution Site :: photofj.net

Host Information

Locky Distribution Site:photofj.net
Threat:Distribution Site
Malware:Locky
URL:http://photofj.net/988gd4
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:DOMAIN.COM, LLC
Nameserver(s):jm1.dns.com
 jm2.dns.com
Firstseen (UTC):2016-11-23 10:37:21
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2018-09-14 02:03:592019-05-24 01:55:53160.124.156.198Not listedAS132839POWERLINE-AS-AP POWER LINE (HK) CO., LIM[...]- South Africa (ZA)
no2017-05-30 01:45:292017-06-09 01:43:59104.148.25.39Not listedAS46573GLOBAL-FRAG-NETWORKS - Global Frag Netwo[...]- United States (US)
no2017-05-30 01:45:302017-06-09 01:43:59104.148.25.54Not listedAS46573GLOBAL-FRAG-NETWORKS - Global Frag Netwo[...]- United States (US)
no2017-08-29 01:46:112017-11-20 01:07:26106.14.202.146Not listedAS37963CNNIC-ALIBABA-CN-NET-AP Hangzhou Alibaba[...]- China (CN)
no2016-11-23 13:05:372017-03-12 01:57:31116.255.152.112Not listedAS37943CNNIC-GIANT ZhengZhou GIANT Computer Net[...]- China (CN)
no2017-08-05 01:40:532017-08-28 03:26:55116.62.155.59Not listedAS37963CNNIC-ALIBABA-CN-NET-AP Hangzhou Alibaba[...]- China (CN)
no2017-07-04 01:43:182017-08-04 01:41:3613.124.107.209ec2-13-124-107-209.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-07-12 01:44:20never13.124.115.129ec2-13-124-115-129.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-07-21 01:42:03never13.124.159.247ec2-13-124-159-247.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-07-22 01:45:22never13.124.51.186ec2-13-124-51-186.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-07-09 01:41:432017-07-11 01:43:2552.78.27.237ec2-52-78-27-237.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-07-27 01:42:412017-07-30 01:40:3352.78.44.216ec2-52-78-44-216.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-07-13 01:42:242017-07-26 01:41:4652.79.150.77ec2-52-79-150-77.ap-northeast-2.compute.amazonaws.comNot listedAS16509AMAZON-02 - Amazon.com, Inc., US- Korea, Republic of (KR)
no2017-11-21 01:06:18never54.223.239.7ec2-54-223-239-7.cn-north-1.compute.amazonaws.com.cnNot listedAS55960BJ-GUANGHUAN-AP Beijing Guanghuan Xinwan[...]- China (CN)
no2018-05-30 01:13:562018-06-30 02:02:3259.188.232.88Not listedAS17444NWT-AS-AP AS number for New World Teleph[...]- Hong Kong (HK)
no2017-03-13 02:02:142017-04-21 01:59:3469.172.201.153Not listedAS19324DOSARREST - Dosarrest Internet Security [...]- United States (US)

# IPs found: 16 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-23 12:50:51a848b6d934744a8228e861d3ca6f6e5f262'144 bytesVirustotal results 9/54 (16.67%) n/a

Unique dropped files: 1