URLhaus Database

You are currently viewing the URLhaus database entry for http://218.92.218.40:918/jihuogj/HEU_KMS_Activator_v11.2.0.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:216656
URL: http://218.92.218.40:918/jihuogj/HEU_KMS_Activator_v11.2.0.exe
URL Status:Offline
Host: 218.92.218.40
Date added:2019-07-12 06:53:41 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Unknown
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2019-07-12 06:54:04 UTC to abuse{at}jsinfo[dot]net)
Takedown time:19 days, 5 hours, 19 minutes Bad
Tags:exe

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-07-29n/aexe b6a3a97cd00a3ae9e28f0b1db2dcf6d843e8d85416883de005a1b19e9c9ca24dn/a
2019-07-27n/aexe 760ff59f88e6862c4eac208d935933d6e4ea2aee130ded5b5dfd55d3beb6de7fn/a
2019-07-17n/aexe bcbb99bc6a4cb5bf6f2d3511e6927138c37679fd6f1365a5c5b6508c95c9c978n/a
2019-07-13n/aexe b61b56569a22954188a07faea3f33483205758f8f0eed98d06e425a1695d2e91n/a
2019-07-12n/aexe 26dabe0dcfdda0b276272aa36803e9c68d16c0c9be268bfcb63d5004b639db21Virustotal results 66.67%