Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
196	2024-06-20 17:29	8F59FF51-D7D5-4EBA-B697-7BB840... efee52ee4a1b1636910e18ed33e47b0f PDF							guest

197	2024-06-21 00:38	IOUSB.pdf 2929d4841e1b01c2df23d6e98b0548b3 PDF							guest

198	2024-07-05 17:50	РОСКОМНАДЗОР письмо Google Ana... adc398c253cff3c1acf9a48e78f5775d PDF VirusTotal Malware				0.4		1	guest

199	2024-07-19 13:10	#2. 금융당국 요청에 따른 프로젝트 정보 확인 요청의... 05545d71b8afcc697faf751f81cf66fd PDF							ZeroCERT

200	2024-07-19 13:30	Adobe-PDF-Viewer.js 916b1bf69fdabd368c719a14726fda61 Generic Malware Antivirus VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut Creates executable files unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key	1 Keyword trend analysis	2		7.0		5	ZeroCERT

201	2024-07-23 14:40	PDF File.lnk 44770e275c39bf3611eca4580aef573b Generic Malware Antivirus AntiDebug AntiVM Lnk Format GIF Format PowerShell ZIP Format Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted heapspray Creates shortcut RWX flags setting unpack itself powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW Tofsee Interception Windows ComputerName Cryptographic key	3 Keyword trend analysis	4	1	10.6	M		ZeroCERT

202	2024-07-26 18:52	kyvbsa.pdf d73a838f5ca1608b145182bc05b98921 PDF					M		ZeroCERT

203	2024-07-31 09:37	DR_Mod_200_2023.PDF.lnk 0d6f8a03885e85f384584cb2416f859e Generic Malware Antivirus AntiDebug AntiVM Lnk Format GIF Format VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut RWX flags setting unpack itself powershell.exe wrote suspicious process Interception Windows ComputerName Cryptographic key	1 Keyword trend analysis	1		6.6		35	ZeroCERT

204	2024-08-02 09:31	PDFGOOOOO.HTA 99bbfc2fe6e9742b44c42abf3b9ea18e Suspicious_Script_Bin AntiDebug AntiVM MSOffice File VirusTotal Malware VBScript Code Injection Check memory Checks debugger buffers extracted wscript.exe payload download Creates executable files RWX flags setting exploit crash unpack itself Windows utilities suspicious process WriteConsoleW Tofsee Windows Exploit Advertising Google ComputerName DNS crashed Dropper	10 Keyword trend analysis Info https://support.google.com/drive/answer/6283888 https://www.googletagmanager.com/gtag/js?id=G-H30R9PNQFN https://support.google.com/favicon.ico https://fonts.gstatic.com/s/googlesans/v16/4UabrENHsxJlGDuGo1OIlLU94YtzCwA.woff https://docs.google.com/document/d/1F5RULhkoBF-7vdHlyYfHj3e_zEDMCP6lEzhIzBxJ77M/edit https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc-.woff https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff https://fonts.gstatic.com/s/googlesans/v16/4UaGrENHsxJlGDuGo1OIlL3Owpg.woff https://www.google-analytics.com/analytics.js https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc-.woff	11 Info www.googletagmanager.com(142.250.207.104) support.google.com(142.250.206.206) - mailcious docs.google.com(172.217.25.174) - mailcious www.newupdatenew.com(93.127.201.247) - mailcious www.google-analytics.com(142.250.76.142) fonts.gstatic.com(142.250.207.99) 142.251.130.14 142.250.76.14 172.217.24.99 142.250.71.200 93.127.196.158	1	10.0	M	19	ZeroCERT