Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1	2024-07-01 15:06	ENC.zip 34dd73380e19295eef9c195a9f35c9b3 ZIP Format VirusTotal Malware Malicious Traffic Tofsee	8 Keyword trend analysis	2	1	1.6		3	ZeroCERT

2	2024-06-20 16:42	info.zip cbcb58ffe45c202c11bcf2070496aed6 ZIP Format Malware download VirusTotal Malware suspicious TLD Downloader	1 Keyword trend analysis	3	1	2.0	M	55	ZeroCERT

3	2024-06-17 13:43	__x64___setup___x32__.zip 7e05adc41fe0d6484c3cc75893991a2f ZIP Format Malware Malicious Traffic Tofsee	2 Keyword trend analysis	3	1	1.2			ZeroCERT

4	2024-06-13 13:39	Overdue_9658.zip 4c5709c8fd879a0ead2124fc546fa202 ZIP Format							ZeroCERT

5	2024-06-13 13:39	Overdue_9658.zip 4c5709c8fd879a0ead2124fc546fa202 ZIP Format							ZeroCERT

6	2024-06-13 13:13	Moneta-Bankdeposit.txt.jar 55ef9bbcb17c61bd3687d9abf98d6dc9 ZIP Format VirusTotal Malware Check memory heapspray unpack itself Java				2.2		12	ZeroCERT

7	2024-06-13 13:02	bn.jar 25134872eb45cd26b9bda5752f0cc55d ZIP Format Check memory heapspray unpack itself Java				1.6			ZeroCERT

8	2024-06-12 04:31	Deezer_8.0.13.2_apkallpure.xyz... 3ce3566b042ee2f6cc406085985a8590 Generic Malware ZIP Format							guest

9	2024-06-12 04:31	Deezer_8.0.13.2_apkallpure.xyz... 3ce3566b042ee2f6cc406085985a8590 Generic Malware ZIP Format							guest

10	2024-06-08 05:30	startservices.cmd cae3961f999cc4885834fd3a5dec3f09 Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM Windows utilities WriteConsoleW Windows				1.0			guest

11	2024-06-08 05:30	mysql_uninstallservice-win10.c... 160aaa5a69bf0fd6fbf89a84b8fad035 Downloader task schedule Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM Windows utilities WriteConsoleW Windows				1.0			guest

12	2024-06-08 05:30	stopservices.cmd ca1880f2d6fb1b32595c049c9d7dc1db Downloader task schedule Create Service Socket Http API Steal credential PWS DNS Internet API DGA ScreenShot Escalate priviledges Sniff Audio HTTP Code injection FTP KeyLogger P2P AntiDebug AntiVM Windows utilities WriteConsoleW Windows				1.0			guest

13	2024-06-08 05:29	oa-importcert.cmd 4d3f949bda6999f920d5338e785f75f2 Downloader task schedule Socket PWS SMTP DNS Create Service DGA Http API ScreenShot Escalate priviledges Steal credential Sniff Audio HTTP Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key				5.0			guest

14	2024-06-08 05:29	firewall-win10-open-oa.cmd c14d829053bc52e0df45f97cfa6913ac task schedule Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM Windows utilities malicious URLs WriteConsoleW Firewall state off Windows				2.0			guest

15	2024-06-08 05:29	mysql_installservice-win10.cmd c3f725b9691259bd095bff47aa0ab077 Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM Windows utilities WriteConsoleW Windows				1.0			guest