The famous KMSPico activator tool has been classified as a malicious binary, the tool contacts 8 domains and 14 hosts while activating the Windows environment in which is being run.
The hosts and IPs which are connected are shown below:
cdn2.downloadcrest.com 184.108.40.206 United States
installer.ppdownload.com 220.127.116.11 United States
static.revenyou.com 18.104.22.168 United States
srv.dmdataserver.com 22.214.171.124 United States