Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1	2024-07-24 09:24	DRWG-347RB1.pd.xls c433eae598bb293ae5c2f28ad9a61c3b MSOffice File VirusTotal Malware unpack itself Tofsee DNS	3 Keyword trend analysis	3	1	3.0		15	ZeroCERT

2	2024-02-20 20:05	excel-ultimate-suite.msi 28303061b11b4c17b3580b754b9b8299 Generic Malware Malicious Library ASPack .NET framework(MSIL) UPX MSOffice File CAB OS Processor Check PE32 PE File DLL VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces AppData folder AntiVM_Disk VM Disk Size Check ComputerName	1 Keyword trend analysis	2		4.4		7	guest

3	2024-02-12 23:12	Receipt-894324.xls 73f2506109fae384bc40c7ba7cb5fc9c VBA_macro MSOffice File VirusTotal Malware Check memory unpack itself suspicious process	10 Keyword trend analysis Info http://jeromfastsolutions.com:8088/scripts/file10.bin http://jeromfastsolutions.com:8088/templates/file10.bin http://jeromfastsolutions.com:8088/themes/file5.bin http://webservicesamazin.com:8088/css/details.bin http://fasteasyupdates.com:8088/tpls/file3.bin http://onlinefastsolutions.com:8088/plugins/file9.bin http://paymentadvisry.com:8088/styles/file7.bin http://jeromfastsolutions.com:8088/bundle/details.bin http://buyer-remindment.com:8088/css/file8.bin http://onlinefastsolutions.com:8088/fonts/file13.bin	1		3.4	M	41	guest

4	2024-01-18 07:16	4501185419.xls 6ab14c920d762241b62aaa41f0982987 VBA_macro Generic Malware MSOffice File VirusTotal Malware exploit crash unpack itself Exploit DNS crashed		1		3.6		35	guest

5	2023-12-06 12:57	HSBC Payment Advice.xls 3a4eb467c8ee5a0661b005aa8f728c7a VBA_macro Generic Malware MSOffice File VirusTotal Malware Malicious Traffic unpack itself DNS	1 Keyword trend analysis	1	2	2.6		23	ZeroCERT

6	2023-12-04 10:47	Invoice%20325274%20from%20Quic... ab0ba30c618d88e8a9134e0a7c43fc31 VBA_macro MSOffice File VirusTotal Malware				1.0	M	34	guest

7	2023-09-19 17:51	qqdownloadftnv5.xls a0939fe019485426ee55b070d62b7352 VBA_macro Generic Malware PWS ScreenShot KeyLogger AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				3.2	M	48	ZeroCERT

8	2023-09-07 17:45	qqdownloadftnv5 9cbc21a9ed6e1525332557904760e570 VBA_macro Generic Malware Http API PWS ScreenShot KeyLogger AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection RWX flags setting unpack itself				3.6	M	45	ZeroCERT

9	2023-07-17 13:14	Receipt-894324.xls 73f2506109fae384bc40c7ba7cb5fc9c VBA_macro MSOffice File VirusTotal Malware Check memory unpack itself suspicious process	10 Keyword trend analysis Info http://jeromfastsolutions.com:8088/scripts/file10.bin http://jeromfastsolutions.com:8088/templates/file10.bin http://jeromfastsolutions.com:8088/themes/file5.bin http://webservicesamazin.com:8088/css/details.bin http://fasteasyupdates.com:8088/tpls/file3.bin http://onlinefastsolutions.com:8088/plugins/file9.bin http://paymentadvisry.com:8088/styles/file7.bin http://jeromfastsolutions.com:8088/bundle/details.bin http://buyer-remindment.com:8088/css/file8.bin http://onlinefastsolutions.com:8088/fonts/file13.bin	1		3.2	M	37	guest

10	2023-06-21 17:08	tst.xls bce13902533947cb73decdacecdbf12c MSOffice File unpack itself				0.4			guest

11	2023-06-21 17:05	TGSS-60HVI3 ODU- EXP-GCHV-D160... bce13902533947cb73decdacecdbf12c MSOffice File unpack itself				0.4			guest

12	2023-06-15 17:33	List of Compromised Systems.xl... fa595637dcb1d0dbaa41e928b1e59064 Downloader VBA_macro Generic Malware PWS[m] KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				2.8		25	ZeroCERT

13	2023-06-07 17:59	file.xls b4b1d0f39ef9ad937d94513e95d324d0 VBA_macro Antivirus MSOffice File VirusTotal Malware exploit crash unpack itself Exploit crashed				1.8		29	ZeroCERT

14	2023-03-08 14:03	Documento.xls 893f9b10a48073fc3fa0d5c8867f7200 Downloader MSOffice File VirusTotal Malware ICMP traffic RWX flags setting unpack itself suspicious process Tofsee	1 Keyword trend analysis	9	2	4.8	M	43	ZeroCERT

15	2023-03-08 14:01	X8099607585O.xls 6493581b246b731e4937fbee64a68803 Downloader ScreenShot PWS[m] KeyLogger AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				3.2		40	ZeroCERT