URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kmhpromoters.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-14 13:49:37 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-05-29 16:43:26	188.114.96.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-05-29 16:43:26	188.114.97.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-07-12 10:13:01	104.21.16.137	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-12 10:13:02	172.67.212.195	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 03:08:29	104.21.112.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 03:08:29	104.21.16.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 03:08:29	104.21.32.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 03:08:29	104.21.48.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 03:08:29	104.21.64.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 03:08:29	104.21.80.1	SBL681411	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-14 15:33:05	https://kmhpromoters.com/skdjl/https:/FILE/ALIj...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-09-14 13:49:38	https://kmhpromoters.com/skdjl/https://FILE/ALI...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-14 22:44:58	e5abd1707e24afbeb2ad49977ec61f6da45392df2a709979f8f17a4b6d187002	doc	Heodo
2020-09-14 22:40:00	e5abd1707e24afbeb2ad49977ec61f6da45392df2a709979f8f17a4b6d187002	doc	Heodo
2020-09-14 19:13:12	8014f6ab3e277e6346b2e49fae79962948c0b264e7000be259601b0b715b3e15	doc	Heodo
2020-09-14 19:06:00	8014f6ab3e277e6346b2e49fae79962948c0b264e7000be259601b0b715b3e15	doc	Heodo
2020-09-14 19:01:40	f838500b48eb331bc0d22698c3787400b13298bc5e140d32c07d6c7807a464a6	doc	Heodo
2020-09-14 18:49:43	d01054cbeb1b74004b1711e8cca1bb9c162c86117e09a0e4110ac90bd1848809	doc	Heodo
2020-09-14 18:42:09	9071af554116b7e5e92cbd63922f2d577d1fd912ed4fd121ab0762aa8b2dd589	doc	Heodo
2020-09-14 18:37:10	04c3ce2f282ed4ed9c831c5caff0edc29324dbd2eb39817fc6ed53683c5e0933	doc	Heodo
2020-09-14 18:16:13	707c1063c30249706f5b47d56c8d6b057f13c1ba249b6fb0a9e86fced1ccc340	doc	Heodo
2020-09-14 18:16:05	707c1063c30249706f5b47d56c8d6b057f13c1ba249b6fb0a9e86fced1ccc340	doc	Heodo
2020-09-14 17:57:25	1b861fc89bf8e49013023f4458519f13803bfabb2b4eff3e63cb209f31406192	doc	Heodo
2020-09-14 17:54:58	d28c4a81b7b65453a8ac5e0633c7504b2ddc37bf979bf32f7a946d7c02cffc59	doc	Heodo
2020-09-14 17:51:58	d28c4a81b7b65453a8ac5e0633c7504b2ddc37bf979bf32f7a946d7c02cffc59	doc	Heodo
2020-09-14 17:38:04	41a5219800a60a147e301cb5ee472f45de2130aa095d82a52fa81121b5881860	doc	Heodo
2020-09-14 17:31:15	63ab439cb5788c279996c35d7e41341081f97dadb4b255653cb11194a9368465	doc	Heodo
2020-09-14 17:18:24	c0d7a02d33e12631b692222d46bf3ea21a3a4e6c0964e5508bdb25148af88689	doc	Worm.Ramnit
2020-09-14 17:11:38	d14ca2a26f3320ae83ccf62d1671ae05864f80b048af7781992fbdd253d243d7	doc	Heodo
2020-09-14 17:05:56	83467069c2ec2cbe80e57095585d63441d9ebb7ade6e634ebc31eab616f5580e	doc	Heodo
2020-09-14 16:55:25	3dc5285bec0496d0a4993cc2a0d80e534010b345115320b8b96343b8ab9b10e3	doc	Heodo
2020-09-14 16:42:39	30dd2df0674e842f8a3bfd8880f538175f2f42045d66060984f720b865acd353	doc	Heodo
2020-09-14 16:42:28	30dd2df0674e842f8a3bfd8880f538175f2f42045d66060984f720b865acd353	doc	Heodo
2020-09-14 16:39:54	85b941aa2dfcdb8316fad92e43fdb207d52a3f4429b7bc59134fa759931284c8	doc	Heodo
2020-09-14 16:21:24	3ab666907d1caac6699ea16ad02a0143d9478daeabc0fb3e5bd94199cb787774	doc	Heodo
2020-09-14 16:19:26	383354c8056fb386a9af9f40c354846726ff04165ca01390075eeefad8c28faa	doc	Heodo
2020-09-14 15:57:07	ed2623cbc3ddc280a2d77c1be9f87c90240c7ea5c9a4e9c6dcfa66b3194d1e1c	doc	Heodo
2020-09-14 15:55:44	ed2623cbc3ddc280a2d77c1be9f87c90240c7ea5c9a4e9c6dcfa66b3194d1e1c	doc	Heodo
2020-09-14 15:36:13	e42ab2c33e334aaa8d441b35ee6af4cfbf0b44d94e1a27383f436682592d0560	doc	Heodo
2020-09-14 15:33:05	a76e5f0c9067cd2cd19e85c30f44b763df4d42a5fd1c12cd4fe75cd8835de43b	doc	Heodo
2020-09-14 15:09:42	c10c5243885706282a292c88ce519427d115edbc902b77dfa717be2204d55e9b	doc	Heodo
2020-09-14 14:45:31	71522a73901d71c952990b08f05a7d2af7f5a8dcf57d2ebc354686dcb172584c	doc	Heodo
2020-09-14 14:24:18	051792acd1ef777cf4872e67d4fe87bb93c8d8bbef658b9246a03c24e7fa4489	doc	Heodo
2020-09-14 13:56:55	b7c1d330ae0704a55e88453febc87487493166e74f41e8858126b915c055ed5c	doc	Heodo
2020-09-14 13:49:38	31948483fc5ed6d49d09367c9dd1e1d602a0124ce7f4758a4ec04c3c9b71c2fb	doc	Heodo