URLhaus Database

You are currently viewing the URLhaus database entry for http://59.175.183.106:6713/help.scr which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2888476
URL: http://59.175.183.106:6713/help.scr
URL Status:flame Online (spreading malware for 1 year, 7 month, 6 days, 16 hours, 47 minutes)
Host: 59.175.183.106
Date added:2024-06-14 11:54:42 UTC
Threat:Malware download Malware download
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-06-14 11:55:25 UTC to hbadd{at}189[dot]cn)
Tags:CoinMiner help.scr TellYouThePass

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-04-07help.screxe 350336b919bd0122c56bcb782ea14e636e217cc707aec716b8479d46b01eb17fn/a CoinMiner
2025-03-31n/aexe c9d1df62d3df066d194925ff53f285801124d3af453b96980ed6d90f58a5d2b0n/a CoinMiner
2025-03-02n/aexe 3885153a0391c5e990f29582ccd422b0c20ada9fb09a6d281c87dfcb2fd5148dn/a CoinMiner
2025-01-23n/aexe b9c73d383271f98899d8c3aa270b2474024cc8a45981b8581925098f4ab078f7n/a CoinMiner
2025-01-19n/aexe e63857572f9c153829de34bc45523546ed439bc1fc84479c38361a3892c394dfn/a CoinMiner
2024-11-13n/aexe 65ae712e45ded37a76a6ff260a6edb54d9405449b881183bbf39947fc01f5bbcn/a CoinMiner
2024-09-10n/aexe f4f005c5ca1c1d989944e386b9d0ec04acc9f8ad0965234913ed275a401f08c5n/a CoinMiner
2024-09-05n/aexe 19bc03afafaae6c8c988707ca504cf542addf076f4b993fa08e8aa6bb6223aa7n/a 
2024-08-19n/aexe 9fd7ac57a114bcd9fe7481bbee42b49325b625f2eada181282beee16e4a67e00Virustotal results 45.21% 
2024-08-16n/aexe e9b830b9d7f99f73b5a1c3f16959d018403c7229fee3d5ac3379bd1346b82360Virustotal results 6.85% 
2024-08-12n/aexe 95a8b575a367514f4318622c8bc57723562d0bad8a2877247fda669ca25749efVirustotal results 8.00% 
2024-08-05n/aexe bc324cd35fdd610d2cc18fcf1d202f88ce3d59cd317d9d5bb2edb1151d935022n/a CoinMiner
2024-07-25n/aexe 16e51cef0c2d4dc95fa0d780a0c885273355d9a2f2cdb9dfcc8b1f29d5c611efn/a CoinMiner
2024-07-24n/aexe 45822ad16c7449f146e429f231f3d6f315c9cc3e7b19f2e0f31ba8982522a75bn/a CoinMiner
2024-07-12n/aexe a413f553eadbb4236c5aa3f4e8feab0fbf5f30622d791851ccc1d0081d194602n/a CoinMiner
2024-07-11n/aexe 1919ddc36d33f0433fee6227cea94c7eeaf156c7144032498c37bd5a62adff38n/a CoinMiner
2024-06-29n/aexe 04e2761ea7b48e02dec35557aadf98b6145be5706a2fc49425f7282c8ed0256dn/a CoinMiner
2024-06-24n/aexe ac666663bebea7565aeaf60659275061a7ee73a15194d9a784dc356aa57fac70n/a 
2024-06-24n/aexe c0d1bd85e1173d377b26f129ba0a70ec6cac80d372bf7cbfdd2b9dbbf1be0b51n/a CoinMiner
2024-06-24n/aexe ff3b2c48a56bf962ca7593d4aa9fc906029d6e6cac337bf2a5b65ac8b6c51019n/a 
2024-06-23n/aexe 76569bfe7c6874f857f74516bbda1f429a47048ed07d6d6e5b4b126327c90067n/a 
2024-06-22n/aexe e0739456f8ce8fea05c3ad6d084c79a838424992b39cb0d316fcc4b1f055c166n/a 
2024-06-21n/aexe 9400b0313fd998f9bd98b3f4a08e26a72441f369b5ee8be92b2c8c9ae5dd6261n/a CoinMiner
2024-06-19n/aexe 60b17d99bf698493d0589aa39305bf98edea4eeb202dc95dd6c30eb68b4c47den/a CoinMiner
2024-06-19n/aexe ef53eed763c5f5c69628792561b7afb72eb2359b7aec0c74a99c5534b713505bn/a 
2024-06-17n/aexe 7feae24e6500bddc84a540bce8f6ef4a148eda3095945e500e5987bab28d39aen/a 
2024-06-17n/aexe 5d6fcda729c9df164218400364a1401762f23135788f107aad1312c8992790a5n/a CoinMiner
2024-06-14n/aexe 77bfcc49e879f4c7b3ab170d65599ac49c4eb40a96228449d45e3cde428f9b71n/aCoinMiner