URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	nsaxem.dns.army
Domain registrar:	n/a
Domain registration date:	2016-11-18 01:26:08 UTC
Abuse complaint sent?:	Yes (2025-02-16 16:05:02 UTC to kontakt{at}digineo[dot]de )
Spamhaus DBL :	Phishing domain
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-02-16 16:03:03 UTC
Total malware sites :	19
Online malware sites :	0 (0%)
Offline Malware sites :	19 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-02-16 16:03:05	199.195.252.200	iblis.vile.sx	Not listed	AS53667 PONYNET	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-02-16 16:03:20	http://nsaxem.dns.army:808/linux_mips_softfloat	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:19	http://nsaxem.dns.army:808/linux_mipsel_softfloat	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:15	http://nsaxem.dns.army:808/linux_ppc64	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:15	http://nsaxem.dns.army:808/linux_386	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:15	http://nsaxem.dns.army:808/linux_mips64el	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:14	http://nsaxem.dns.army:808/linux_mips64_softfloat	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:14	http://nsaxem.dns.army:808/linux_mips64el_softf...	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:14	http://nsaxem.dns.army:808/linux_amd64	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:14	http://nsaxem.dns.army:808/linux_arm5	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:13	http://nsaxem.dns.army:808/linux_arm7	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:12	http://nsaxem.dns.army:808/linux_ppc64el	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:05	http://nsaxem.dns.army:808/linux_arm64	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:05	http://nsaxem.dns.army:808/win.exe	Offline	botnetdomain Chaos opendir	DaveLikesMalwre
2025-02-16 16:03:05	http://nsaxem.dns.army:808/download.sh	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-02-16 16:03:05	http://nsaxem.dns.army:808/linux_mips	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:04	http://nsaxem.dns.army:808/m.sh	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-02-16 16:03:03	http://nsaxem.dns.army:808/linux_arm6	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:03	http://nsaxem.dns.army:808/linux_mipsel	Offline	botnetdomain Kaiji mirai opendir	DaveLikesMalwre
2025-02-16 16:03:03	http://nsaxem.dns.army:808/linux_mips64	Offline	botnetdomain mirai opendir	DaveLikesMalwre

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-02-16 19:45:55	81e8a9cf02239aae8968b81185c9118421d3ad3c42fd2639fdf4a1bde5b6eeae	elf	Kaiji
2025-02-16 17:15:35	a30c4fc8b11cb71e7b91b955a1ac756daf4444bbf04d79d4f292953599e2abfd	exe	Ransomware.Chaos
2025-02-16 17:13:41	b16fd31d9411c06a1761ce65ffaad4e11187af7034edccdfd127878c76e830e8	elf	Kaiji
2025-02-16 17:06:57	eab59707129d9936ffae7fd81bbd121712f8d129380cf918a9cefccdcb6e2308	elf	Kaiji
2025-02-16 16:24:13	3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72	elf	Kaiji
2025-02-16 16:03:20	4790805c4b31a69cd9c2bae8ad62f8c3770e251aaa83bfa5104fb0034e485ba7	elf	Kaiji
2025-02-16 16:03:19	4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e	elf	Kaiji
2025-02-16 16:03:15	0710fd9bcb2d9c532bd7d232151669c356ab00f6b78bbf62abeb87d72bbbafa6	elf	Kaiji
2025-02-16 16:03:15	10dfba9909f17950a83b4ae851d93629db0bd34cd728d72f1d1df0b5a9a6cb0a	elf	Kaiji
2025-02-16 16:03:15	7e1b7dcb4f461f55c8d40ea0b12fd313035c83317542fda62737631d5e76d863	elf	Kaiji
2025-02-16 16:03:14	0710fd9bcb2d9c532bd7d232151669c356ab00f6b78bbf62abeb87d72bbbafa6	elf	Kaiji
2025-02-16 16:03:14	ec91106e43a01270360d998df885c99bea7face018fe85c57d4bab9236eb99d7	elf	Kaiji
2025-02-16 16:03:13	6431f1372f237455978ffa78e54c0c44868775929988d9ee57c061943cc62d10	elf	Kaiji
2025-02-16 16:03:13	e8361def9aa8d9f49d44a637431da0237cbdbc0b0993293b22d6c4f8d832a4ef	elf	Kaiji
2025-02-16 16:03:13	dc041ee1a2da8c8ba6e874f414d5b52a0237f39b2995890b56ac7fb173d86104	elf	Kaiji
2025-02-16 16:03:11	014600785db4f3057e38152a16207b78b235d5b48366dfcaef537120b7c905c8	elf	Kaiji
2025-02-16 16:03:04	8fd6e5c4a7fb95a46ab225a8885fc0a82a5a91780276036218d0709a3d6ffd33	sh