URLhaus Database

You are currently viewing the URLhaus database entry for http://kerryglow.info/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3815045
URL:	http://kerryglow.info/
URL Status:	Online (spreading malware for 1 day, 4 hours, 13 minutes)
Host:	kerryglow.info
Date added:	2026-04-09 15:01:13 UTC
Threat:	Malware download
URLhaus blocklist:	Blocked
Spamhaus DBL :	Abused domain (malware)
SURBL :	Blocked
Quad9 :	Blocked
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2026-04-09 15:02:13 UTC to abuse{at}cloudflare[dot]com)
Tags:	ascii powershell ps1 ua-ps

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2026-04-10	4b92a64501031c5223e7277c56fd58695f6f02a43ef1879679b1861e1fc65f9a.ps1	ps1	4b92a64501031c5223e7277c56fd58695f6f02a43ef1879679b1861e1fc65f9a	n/a
2026-04-10	dd9cf22b3ed633672330fbb78215cfd75f65acfae2aefa6c1e8acced2891e48d.ps1	ps1	dd9cf22b3ed633672330fbb78215cfd75f65acfae2aefa6c1e8acced2891e48d	n/a
2026-04-10	46cea2af90560490372da7ccdc52bc76ff4258147f45822d02de9b96fb1d2ab5.ps1	ps1	46cea2af90560490372da7ccdc52bc76ff4258147f45822d02de9b96fb1d2ab5	n/a
2026-04-09	9a6c723de522b649992276be06d17a37e421b39cbe42964a8a4dd0f9b924bd17.ps1	ps1	9a6c723de522b649992276be06d17a37e421b39cbe42964a8a4dd0f9b924bd17	n/a
2026-04-09	115c99ce045d53f4be08c61eee7af2740f15d1a627ea86e605ccdd08dc302cbc.ps1	ps1	115c99ce045d53f4be08c61eee7af2740f15d1a627ea86e605ccdd08dc302cbc	n/a
2026-04-09	831afa75967f8e2cf63e13be06f4e0a90480db6d14070153744dc9c8d9bee6b6.ps1	ps1	831afa75967f8e2cf63e13be06f4e0a90480db6d14070153744dc9c8d9bee6b6	n/a