URLhaus Database

You are currently viewing the URLhaus database entry for http://118.178.133.241:65500/help.scr which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2888463
URL: http://118.178.133.241:65500/help.scr
URL Status:Offline
Host: 118.178.133.241
Date added:2024-06-14 11:54:04 UTC
Last online:2026-01-26 07:XX:XX UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-06-14 11:55:10 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:1 year, 7 month, 20 days, 19 hours, 26 minutes Bad (down since 2026-01-26 07:21:26 UTC)
Tags:CoinMiner help.scr TellYouThePass

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-05-16help.screxe 2834d0f8292a67d488a7b82fc1f5fd91a7bae02195df0583d8787405d9a82125n/a 
2025-03-22n/aexe ee2ff8cecd23cb07ec8b95500b37cd592090e99666eabe88cbbbf05276fe44e2n/a CoinMiner
2025-03-15n/aexe ba5b9dd4fbe5d6206dac3853fa245c4640a018f32dc521f48a05fd561b8ecf0dn/a 
2025-03-15n/aexe 9ab11e4ad051967c1389d01729349419b8dd9cf156b30d2df099212f0c3c6217n/a CoinMiner
2025-03-14n/aexe 292b786608916536e84dbc6321e1a7b8bbcc85338dc5a6e107f0cdb1e881bc82n/a 
2025-02-19n/aexe af19b6e1037ac60d88a6fd97ac7e5d53e5761bfbdfed9b73845fac918d903ec0n/a CoinMiner
2025-01-25n/aexe 44daddb454708c69f96be3f8d1344d18aa1f8b3c983e9d2af09ee21caa607a2an/a 
2025-01-25n/aexe 024f5373e9d6715e92cef071f0e6213bd6d06f06e9f7c4d004a8eb2d38b3d1c3n/a CoinMiner
2025-01-24n/aexe 8e95ab4b824d8747a7d94062ddbc39363e640fa6cfa2c354fb772dcf42bead84n/a 
2025-01-24n/aexe ef606462d1dfb375e45195bd6553f429eea79c3caeeb6042790e5cc645200109n/a CoinMiner
2025-01-01n/aexe 5acde365ec00e7a75409208adb4356ebcff24f7371cd8a60e007d8150bf0c88cn/a CoinMiner
2024-12-31n/aexe 450c6465210778b0fed7690c31f61a8a72bd9cba21535889ff556672b5409b3dVirustotal results 8.00% 
2024-12-31n/aexe d5cee33fa9642993e5ac0bb2bc30df1e145298454b81d91608a9f8b1b7df77b4n/a CoinMiner
2024-12-12n/aexe a3e58f81aee1354c2b66e6da0b67a1b57ca3dda220fde4aa78a65b64c8b7fb4fn/a CoinMiner
2024-09-25n/aexe e35d483d2d35a4573c6719091f0cb99368253c2a0e322ca2a5c590d059323a40n/a 
2024-09-23n/aexe 9d257e5d875a1b08a95858b816b95600a5dc815056ec5a4387a27b2664e12ea6n/a CoinMiner
2024-09-15n/aexe e499e33a4ea65ab52e6f1e352bcbcab24af3cfdcd07ae075fec9180411761936n/a CoinMiner
2024-09-13n/aexe 9e7a06ebfc88aa82b308abd5ac5b20a9d1772a9085654bcac82b7981480516a0n/a CoinMiner
2024-08-19n/aexe bd140b35c8d48991e016195f9112c02d5180525a8d9d04c5a178a936dcb0a101n/a 
2024-08-18n/aexe 458e8e1472b47ef13b16fb0c6cc054c5116a912031f2719c90d8b48c0f6d3ad5n/a CoinMiner
2024-07-06n/aexe ebd9efc5a103b91a8905182b38856b160f43d06739f2e7f5b0fc90d017d7cdadVirustotal results 2.94% 
2024-06-22n/aexe caa50395733bdc62324b8c00b1d73743351d938b9d4e9000843f4a58c5d1ae12n/a 
2024-06-14n/aexe d4d451457c40bf4dacb36cbbedc89c6dede6dba47493b472aa1450d8c9f87239Virustotal results 84.93%CoinMiner