URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: botnetszx.duckdns.org
Domain registrar:Gandi -
Domain registration date:2013-04-12 19:58:56 UTC
Abuse complaint sent?: Yes (2025-08-07 15:51:01 UTC to abuse{at}duckdns[dot]org)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2025-08-07 15:50:07 UTC
Total malware sites :29
Online malware sites :0 (0%)
Offline Malware sites :29 (100%)
A record(s) observed :7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-23 09:12:20 160.191.245.230Not listedAS153416 DTDMVNCLOUD-VN- VNno
2025-08-11 05:32:21 103.170.123.154Not listedAS131353 NHANHOA-AS-VN- VNno
2025-08-11 17:33:15 103.238.235.157Not listedAS140810 MEGACORE-AS-VN- VNno
2025-08-08 11:19:41 178.128.120.9Not listedAS14061 DIGITALOCEAN-ASN- SGno
2025-08-08 06:37:28 165.232.161.136Not listedAS14061 DIGITALOCEAN-ASN- SGno
2025-08-08 05:20:39 188.166.238.9Not listedAS14061 DIGITALOCEAN-ASN- SGno
2025-08-07 15:50:19 167.172.79.24Not listedAS14061 DIGITALOCEAN-ASN- SGno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-08-15 07:09:22http://botnetszx.duckdns.org/wget.shOfflinebotnetdomain censys mirai ext sh ua-wget NDA0E
2025-08-15 07:09:19http://botnetszx.duckdns.org/c.shOfflinebotnetdomain censys mirai ext sh ua-wget NDA0E
2025-08-15 07:09:18http://botnetszx.duckdns.org/main_ppcOfflinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:18http://botnetszx.duckdns.org/main_x86_64Offlinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:18http://botnetszx.duckdns.org/main_x86Offlinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:18http://botnetszx.duckdns.org/main_armOfflinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:18http://botnetszx.duckdns.org/main_arm7Offlinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:17http://botnetszx.duckdns.org/main_arm6Offlinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:16http://botnetszx.duckdns.org/w.shOfflinebotnetdomain censys mirai ext sh ua-wget NDA0E
2025-08-15 07:09:16http://botnetszx.duckdns.org/main_mipsOfflinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:16http://botnetszx.duckdns.org/main_arm5Offlinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:16http://botnetszx.duckdns.org/jack5tr.shOfflinebotnetdomain censys mirai ext sh ua-wget NDA0E
2025-08-15 07:09:15http://botnetszx.duckdns.org/main_mpslOfflinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:15http://botnetszx.duckdns.org/main_m68kOfflinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-15 07:09:11http://botnetszx.duckdns.org/main_sh4Offlinebotnetdomain censys elf mirai ext ua-wget NDA0E
2025-08-07 15:50:21http://botnetszx.duckdns.org/bot.powerpcOfflinebotnetdomain elf ua-wget BlinkzSec
2025-08-07 15:50:21http://botnetszx.duckdns.org/bot.arcOfflinebotnetdomain elf ua-wget BlinkzSec
2025-08-07 15:50:21http://botnetszx.duckdns.org/bot.x86_64Offlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-08-07 15:50:21http://botnetszx.duckdns.org/bot.sh4Offlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-08-07 15:50:21http://botnetszx.duckdns.org/bot.mipsOfflinebotnetdomain elf mirai ext ua-wget NDA0E
2025-08-07 15:50:21http://botnetszx.duckdns.org/bot.arm6Offlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-08-07 15:50:20http://botnetszx.duckdns.org/bot.arm7Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-08-07 15:50:20http://botnetszx.duckdns.org/bot.armOfflinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-08-07 15:50:20http://botnetszx.duckdns.org/bot.arm5Offlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-08-07 15:50:20http://botnetszx.duckdns.org/dvr.shOfflinebotnetdomain mirai ext sh ua-wget BlinkzSec
2025-08-07 15:50:19http://botnetszx.duckdns.org/bot.i686Offlinebotnetdomain elf ua-wget BlinkzSec
2025-08-07 15:50:19http://botnetszx.duckdns.org/bot.x86_32Offlinebotnetdomain elf ua-wget BlinkzSec
2025-08-07 15:50:19http://botnetszx.duckdns.org/bot.mipselOfflinebotnetdomain elf ua-wget BlinkzSec
2025-08-07 15:50:19http://botnetszx.duckdns.org/bot.sparcOfflinebotnetdomain elf ua-wget BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-08-15 07:09:223d1b193f298030b2adceabbdb78ac7186ba80bf66672a7988c68839cbc74d67eshMirai
2025-08-15 07:09:1903749d583bfb7335e6d820c5f274fba2dccfcfe88924089c494b373115292475shMirai
2025-08-15 07:09:18fcf3b24fdfdb4accaf97252bf21989bfa350d2f126fece3f1d2f6b989dca029eelfMirai
2025-08-15 07:09:186385a8df2c6bf5402c4679201b81cdfd5b06446274fc52386f2495abf98da81felfMirai
2025-08-15 07:09:18a0ccf01085eb405c50b0c1a51f36985cd6eefad18af97457a6326a017330654eelfMirai
2025-08-15 07:09:185827d073fda589556e3376c5768171b6d25a7df4e94ad1e67d7dda7a7d17a7f6elfMirai
2025-08-15 07:09:18399c0ffdb6bdc660f8b3694a618ad5b1ebe0ca20817ba5fc7b2662aa434ff817elfMirai
2025-08-15 07:09:17a62b53404f8834fc0dc7e1e7a79fcbd1ae22031892cb13e5726c6492dc5d0f49elfMirai
2025-08-15 07:09:1678ecda4613595115cda7de96593305e37a62086adf51abfd28c3214c60b0ad5bshMirai
2025-08-15 07:09:163c6d6a22468987107d98c1451170e99fb92408ded879695922e1f03ff580c9d4elfMirai
2025-08-15 07:09:16796b9fa1a7ccd4018b121908774b1fbd673efed969e170d599952c02527994d9elfMirai
2025-08-15 07:09:1626ab4e7e42643b8ef4b2ca429a8f2acd8cca05e54952d9092c4521d23fc0b114shMirai
2025-08-15 07:09:159995f6d2f8fdb21e6a615f3c41cb802dad1d381bba87a4d18e422eb3c016db0celfMirai
2025-08-15 07:09:156d90cbc1b7cc9c7eea03eadcf45c4364a35d3bea0ed3f720bbfa22f3347b5b18elfMirai
2025-08-15 07:09:11c58938c52830eb07bdafc504064faaa6175b38a59b0a291b6ffc9750d9214a7eelfMirai
2025-08-11 18:43:21caa63fef140215c87f95a5ef38a72c3b51ed70cd50d451a533505e0e1578da60elfMirai
2025-08-11 18:42:49f72d83afe39fe3043d6c4a09ced8da62d4ec0e41d39176a83f7ac847ce7ea168elfMirai
2025-08-11 18:24:10a90f8890cde3ebe8118c67554479523a5ae5d1927588da59bae8f9f3af463f45elfMirai
2025-08-11 18:12:32ee26f9d3e892810539ed789c5f5f0cc96f116c31acab60e50e5b57f02736909celfMirai
2025-08-11 17:57:185696a7da3eba0db1bab93ee101b25ba05f55e6d8a3667ef8c6dd5b4b9082fa4eelfMirai
2025-08-11 17:52:072de4122307d9a98c85383e92d9b6e277f02af2b93483c4bf27124b31b09dbcc9elfMirai
2025-08-11 17:33:16af730f09a76c75333ac692625a2e85fee290f9a5327c892be07d7807d47f9a63elfMirai
2025-08-11 11:56:374447ecd5099ba1d197318de3cec6257a3f34d240858bbba30fbe0a066d909517elfMirai
2025-08-08 11:50:251a6f8466cbf1406f58af37ac64bd7515ba8b5ba72ebb2a31d988930f935c5764elfMirai
2025-08-08 11:46:38741c3f9f76cdd00e5a94a3d7ba274d3df7982ee11b595bf05179add6fa3ba15felfMirai
2025-08-08 05:51:539b7068c6ac395a1dfee91841dcce68c746557296d319d70b6963c9a1a553208celfMirai
2025-08-08 05:41:41291db867c0273c78bd736516142b4139cbce69780963659a12ac5c0d6f6d1d87elfMirai
2025-08-08 05:21:18bb8fb9423dcb264ec1dd8a229f0e96f7046f4419424c5d17c8f724a0d25c1925elfMirai
2025-08-07 15:50:2182ab78602c8e9fba93ff8d67857fe577f91dd660918d7806c0e62898c3735bb9elfMirai
2025-08-07 15:50:203599acd7c1f672ac18367a9d42d68f8152e5acbfb331609805785a77f6bd765fshMirai
2025-08-07 15:50:20a970b18515cfc26c6ccf68aae4b6465bb4bf0c02583973ea994c82c3063790e9elfMirai
2025-08-07 15:50:201d8a57c2af6fbc673862caadd357f7fbec4762fd41ac3a9906ad2f250389e487elfMirai
2025-08-07 15:50:200f44aede734dac096441ab104886b033b3dae64edec4401a0cc70361b88cde0belfMirai
2025-08-07 15:50:2052a9ae86943bd25e03a6aa0575210689a187dd27162c0ed2eb9d8ac1d132ac7delfMirai
2025-08-07 15:50:20b476667858ae5fe2a20c429a8aa8ec77317efcc6ed1518a59a6e5c46c2deef73elfMirai
2025-08-07 15:50:2099e3320167a65a6b624bdbd4f37b3e88e1ca1136de8279a5e633f2882a7f6542elfMirai