Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
1	2024-07-02 22:06	FreeArc-0.51-win32.exe f610dc533e6a1a631d78391705f374e9 Malicious Library UPX PE File PE32 BMP Format VirusTotal Malware Check memory unpack itself					1.2		6	guest

2	2024-07-02 21:23	FreeArc-0.67-alpha-win32.exe 58d75e3e3002b0769cc9527a87c81e40 NSIS Malicious Library UPX PE File PE32 BMP Format DLL Check memory Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check					2.0			guest

3	2024-06-05 23:26	ICARUS.Setup.exe 225fcf1e03e30b492bd0aef35969329b Emotet Gen1 NSIS Generic Malware Malicious Library UPX Malicious Packer Anti_VM Javascript_Blob PE File PE32 DLL PE64 OS Processor Check DllRegisterServer dll BMP Format Lnk Format GIF Format icon VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut Creates executable files ICMP traffic unpack itself Windows utilities Auto service Check virtual network interfaces AppData folder AntiVM_Disk sandbox evasion VM Disk Size Check Tofsee Ransomware GameoverP2P Interception Zeus Windows ComputerName Trojan Banking	3 Keyword trend analysis Info http://msedge.f.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/3c775e75-aff8-4af1-aede-7a5c0349aa0b?P1=1718201907&P2=404&P3=2&P4=WiuGZ5IY9kx3eECOliePn%2bZR2Oa2T%2fIA6AoadHbz1e2TomQPzt6zla8iSDn3KibvVKZ7rCsNDdx37Vncvson%2bw%3d%3d https://msedge.api.cdp.microsoft.com/api/v1.1/contents/Browser/namespaces/Default/names/msedgewebview-stable-win-x64/versions/latest?action=select https://msedge.api.cdp.microsoft.com/api/v1.1/internal/contents/Browser/namespaces/Default/names/msedgewebview-stable-win-x64/versions/125.0.2535.85/files?action=GenerateDownloadInfo&foregroundPriority=true	9	2		13.0		1	guest

4	2023-12-15 08:44	pdf.exe 2bce2e5420d837f173ce430e1da00d3c UPX AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer RedLine Malware download FTP Client Info Stealer Malware Microsoft suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed		2	3		9.8	M		ZeroCERT

5	2023-06-14 17:44	setup.exe ca29125444e8792b19fe34c901fc6721 Suspicious_Script_Bin UPX Malicious Library PE File PE32 Check memory Creates executable files					0.8	M		ZeroCERT

6	2023-04-21 18:21	smwd5306.exe dc26d49b647e26665fe94dfe5a3b6cff Gen2 NSIS UltraVNC Generic Malware UPX Malicious Library ASPack Anti_VM Malicious Packer Antivirus PE32 PE File PE64 DLL BMP Format .NET EXE OS Processor Check GIF Format Browser Info Stealer VirusTotal Malware AutoRuns MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities Collect installed applications Auto service Detects VMWare AppData folder sandbox evasion WriteConsoleW VMware installed browsers check Windows Browser ComputerName Cryptographic key crashed	3 Keyword trend analysis Info http://d23ocewf5ttxmu.cloudfront.net/br.ashx?pid={PID}&aid={AID}&ss=0&s=N4LjSLF&v=2.1.5.306&md5=271b06c792838b8d992c8cd45f4a3897&mid=AAA0A3AGAJA9A9A7A3AJieie777G3DiL7L77793D1JiAA1&uid=A14B9EAF-39FF-49F6-A848-E4C05A9C6A9C http://d23ocewf5ttxmu.cloudfront.net/br.ashx?pid={PID}&aid={AID}&ss=0&s=N4LjSLF&v=2.1.5.306&md5=3d0118e6f5b93e2a167614e8a0d320e7&mid=AAA0A3AGAJA9A9A7A3AJieie777G3DiL7L77793D1JiAA1&uid=A14B9EAF-39FF-49F6-A848-E4C05A9C6A9C http://d23ocewf5ttxmu.cloudfront.net/br.ashx?pid={PID}&aid={AID}&ss=0&s=N4LjSLF&v=2.1.5.306&md5=15adccbdf2e3e994baa9e12797b52a14&mid=AAA0A3AGAJA9A9A7A3AJieie777G3DiL7L77793D1JiAA1&uid=A14B9EAF-39FF-49F6-A848-E4C05A9C6A9C	4	1		11.0	M	53	ZeroCERT

7	2022-03-10 15:08	win32.exe e3e18dbe2b1a5ef507239a184495ff29 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check DLL VirusTotal Malware Check memory Creates executable files unpack itself AppData folder					2.4	M	22	ZeroCERT

8	2022-02-24 10:18	win32.exe d85ec4fd0eda6d9358573248445d9bc2 Gen2 Gen1 Generic Malware Malicious Library UPX Malicious Packer PE File PE32 DLL OS Processor Check VirusTotal Malware Check memory Creates executable files unpack itself AppData folder					2.2	M	15	ZeroCERT

9	2022-02-24 10:12	Missilem.exe 831081db0026e04d7189e8239fe30b8a Gen2 Gen1 Generic Malware Malicious Library UPX Malicious Packer PE File PE32 DLL OS Processor Check VirusTotal Malware Check memory Creates executable files unpack itself AppData folder					2.0		8	ZeroCERT

10	2022-01-13 11:00	build.exe 6bc6b19a38122b926c4e3a5872283c56 Gen2 NPKI Malicious Library UPX Create Service DGA SSL Socket DNS Internet API Hijack Network Code injection Sniff Audio HTTP KeyLogger FTP Escalate priviledges Downloader ScreenShot P2P persistence Steal credential Http API AntiDebug AntiVM PE File PE32 VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory buffers extracted Creates executable files unpack itself Detects VMWare Check virtual network interfaces suspicious process AppData folder malicious URLs sandbox evasion VMware anti-virtualization Windows ComputerName DNS crashed	2 Keyword trend analysis	5		1	11.6	M	41	ZeroCERT

11	2021-07-04 11:04	SLAC-Setup.exe 27352c5e2e0505c4a1bd198ed094915f PWS .NET framework RAT Generic Malware PE File PE32 .NET EXE VirusTotal Malware Check memory Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check					3.0		30	ZeroCERT

12	2021-06-05 21:42	inst77player_1.0.0.1.exe 5c71794e0bfd811534ff4117687d26e2 PE File PE32 DLL Check memory Creates executable files unpack itself AppData folder					2.0			ZeroCERT