URLhaus Database

You are currently viewing the URLhaus database entry for http://bighaj.de/x86 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3626640
URL:	http://bighaj.de/x86
URL Status:	Offline
Host:	bighaj.de
Date added:	2025-09-18 23:11:20 UTC
Last online:	2025-09-30 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	BlinkzSec
Abuse complaint sent (?):	Yes (2025-09-18 23:12:14 UTC to support{at}jajojoo[dot]com)
Takedown time:	11 days, 16 hours, 40 minutes (down since 2025-09-30 15:52:45 UTC)
Tags:	botnetdomain elf HailBot mirai

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-09-29	n/a	elf	ef62503e39789426ac748cb9855c3083df33dc56c7050061ced30aff3ec831ae	n/a		Mirai
2025-09-28	n/a	elf	e8ce39dc0dc2dacc0819320054d0acd96cd59bdeca40ea313d654c789f464058	21.54%		Hailbot
2025-09-28	n/a	elf	ca561e08a6b6b0549fd60a8fe3b1f0ac283d2a30aa2cae1091cc96ff14afaf1c	23.08%		Mirai
2025-09-26	n/a	elf	9105189b4a1a15f1235a6fa3b4f9896411b89c33c909d4e6598aed9e15f2bcf6	23.08%		Mirai
2025-09-21	n/a	elf	8882e5268eb34afccc087326dd8715c9a6ccab0721a9d7431c0fa42302614ad7	n/a		Mirai
2025-09-21	n/a	elf	ccce15e522c19af4737f1e095d360f3d4410f1a8583ebb4b95700ff6338b974c	52.31%		Mirai
2025-09-18	n/a	elf	89bd41c144b026ab5628d906917c5bb897e408d642ef6ff7e10beb9b34e9f620	29.23%		Mirai