Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1	2024-08-06 09:12	systems.exe 168fd1d2a0af4fdaa019f351fd03204d Generic Malware Malicious Library UPX PE File PE64 OS Processor Check FTP Client Info Stealer VirusTotal Malware Software				1.2	M	2	ZeroCERT

2	2024-04-12 08:41	04_Mtkfarukc.exe 3e2f66f617318069be60fe1c16ecdfd6 .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware				1.2	M	50	guest

3	2024-03-27 07:43	Cvdnacb.exe 50e198816a25e6ceeaf4174413b7d1b3 .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Discord DNS		2	3	2.8	M	54	ZeroCERT

4	2024-03-27 07:41	Mtkfarukc.exe 3e2f66f617318069be60fe1c16ecdfd6 .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Discord DNS		2	3	2.4	M	52	ZeroCERT

5	2023-11-30 07:15	hjk.exe 95ee9a372c00b4fbb86fc4cab7af8739 Generic Malware Malicious Library UPX PWS SMTP DNS AntiDebug AntiVM PE File PE64 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName Cryptographic key				8.4	M	36	ZeroCERT

6	2023-11-30 07:09	eta.exe d96ad0c55fdda0eedebc56b4a2f1d3b8 Generic Malware Malicious Library UPX PWS SMTP DNS AntiDebug AntiVM PE File PE64 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key				7.8		36	ZeroCERT

7	2023-11-05 12:34	plink.exe 7e559dc4e162f6aaee6a034fa2d9c838 Malicious Library PE File PE32 FTP Client Info Stealer WriteConsoleW DNS Software		1		1.4			ZeroCERT

8	2023-10-10 18:25	putty.exe 1d5ad4a60ec9be32c11ad99f234bfe8f Malicious Library UPX PE File PE64 OS Processor Check FTP Client Info Stealer VirusTotal Malware Check memory Checks debugger unpack itself Software				3.0		38	ZeroCERT

9	2023-06-21 15:55	3.exe 68749e1f05472d28f9aead6c393da9d2 Schwerer UPX PE File PE32 Browser Info Stealer VirusTotal Email Client Info Stealer Malware Check memory Checks debugger Creates executable files unpack itself suspicious process AppData folder AntiVM_Disk sandbox evasion VM Disk Size Check Browser Email ComputerName				6.8		34	ZeroCERT

10	2022-12-10 15:07	Emit64.exe 7a5155b804e592d83f8319cbdb27e164 Malicious Library PE File PE64 VirusTotal Malware				1.6	M	31	ZeroCERT

11	2022-08-18 17:32	final00.exe a20fe7a245e150d07856bf04fb89ab23 RAT Generic Malware task schedule UPX Antivirus Malicious Packer AntiDebug AntiVM PE32 PE File .NET EXE VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder WriteConsoleW Tofsee Windows Discord ComputerName DNS Cryptographic key	2 Keyword trend analysis	6	3	18.2	M	56	ZeroCERT

12	2022-06-25 17:57	mmgaserver.exe 67bd7555d34340be8ba5ce07489332ae RAT PE File PE64 VirusTotal Malware MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted ICMP traffic unpack itself Check virtual network interfaces	1 Keyword trend analysis	4		4.4		33	ZeroCERT

13	2022-06-07 11:43	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 PWS Loki[b] Loki.m UPX Malicious Library OS Processor Check PE File PE64 Check memory Checks debugger unpack itself Remote Code Execution				1.6	M		guest

14	2022-05-01 13:50	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 PWS Loki[b] Loki.m UPX Malicious Library OS Processor Check PE File PE64 Check memory Checks debugger unpack itself Remote Code Execution				1.6	M		조광섭

15	2022-03-12 22:56	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 PWS Loki[b] Loki.m Malicious Library UPX PE File OS Processor Check PE64 Check memory Checks debugger unpack itself Remote Code Execution				1.6	M		조광섭