URLhaus Database

You are currently viewing the URLhaus database entry for http://124.67.254.109:61234/help.scr which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2888444
URL:	http://124.67.254.109:61234/help.scr
URL Status:	Online (spreading malware for 1 year, 11 month, 22 days, 0 hours, 5 minutes)
Host:	124.67.254.109
Date added:	2024-06-14 11:52:58 UTC
Threat:	Malware download
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-06-14 11:53:19 UTC to zhaoyz3{at}chinaunicom[dot]cn)
Tags:	CoinMiner help.scr TellYouThePass

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2026-01-11	help.scr	exe	001b3ea4aed3f84279507949df97f8ad31f32fa43feff74899fda247f60633ee	n/a
2025-05-08	help.scr	exe	317e96fe5a4aed6894bc45874417964f6e3369ad61929a43ce76e45bd108be45	69.44%		CoinMiner
2025-04-15	help.scr	exe	fa273556b5c2b2c4f6633316b51ce2ba395c70582553b47696d473e9b02a37c2	n/a		CoinMiner
2025-04-09	help.scr	exe	ba34d5d03201c88a51d715fa79b449950798fedb03b8dd3d6a65e80881c54d97	n/a
2025-03-21	n/a	exe	246391c380a638bdf20beb49834a5f2759c96a5b9915ddf4c14b63c03c731383	n/a		CoinMiner
2025-03-19	n/a	exe	56dfd5772f326ce930d617d17b594271e5cd22f66259f322277f548498478040	n/a
2025-01-26	n/a	exe	67c193ccd4de5ee24ed52b2d738f1b7382072874fba1eac42a26880c9d9eda71	n/a
2025-01-25	n/a	exe	590324fdcc5796ef100c3e2f9b73bd30fdb2c93e2e23d12d6161022f026593c5	7.69%
2024-12-11	n/a	exe	5e4a82ef546abaa90fe8d3cfe9834646c11c1704dfb15b83e215a2ce30e909c0	n/a
2024-08-15	n/a	exe	e24543009c3cca5703ab69809d4dd1633383fda3569c674f384406ef83b93b60	n/a		CoinMiner
2024-08-08	n/a	exe	c92616eccd119590f236cd69da93085d8bd069b96e3857edde5ea22a1010baec	n/a		CoinMiner
2024-07-25	n/a	exe	52e7a99565521c4e08c1f38297bf1a977eac5210c64a28aaad9cdc4baf58eba2	n/a
2024-07-03	n/a	exe	60f713c72e87d083c4bf176f4687482a8a3e4a8652430e4f83c5cbb05c9adcdf	n/a		CoinMiner
2024-07-02	n/a	exe	529674193b5f3a6b66ae3b957ea158cc3bfc15cfaa0f9761857a342ed4f6c18f	n/a
2024-06-30	n/a	exe	50a90720f54338c5b2b1b76541a276f0e65cd93eddc31a67a6f4906a3d96a113	n/a		CoinMiner
2024-06-27	n/a	exe	8816f07d1b9d4da249c305c258a69ba8369103e0ba87c7fa299bba4f555fd34a	n/a		CoinMiner
2024-06-25	n/a	exe	7ceb374a71725a46a3ae3cce932a7d78d27ac0c61eeba8a2f7855411c7103a2c	n/a		CoinMiner
2024-06-17	n/a	exe	50bfbb58e470f451dbff426553bbddacec7fb9d4a67615e330d98753090ee367	n/a		CoinMiner
2024-06-15	n/a	exe	43dc7be0e0c62cd967e53df837b6890d95a5fd0fd3db3748122e595d28958486	n/a		CoinMiner
2024-06-14	n/a	exe	4c2d75bf559e394a9124143cb787af8a9d399f53bb831d432d312935c2d12e07	84.29%		CoinMiner