Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1	2021-09-30 10:01	OneDriveV2.exe ae4019c955855d44d63992904e7f8a65 Generic Malware Malicious Packer PE File .NET EXE PE32 Malware download njRAT VirusTotal Malware PDB suspicious privilege Check memory Checks debugger ICMP traffic unpack itself ComputerName		2	1	4.2		46	ZeroCERT

2	2021-09-30 09:16	OneDrive.exe 69bd982f6a9e73a9576f4d1068bd4213 RAT Generic Malware Malicious Packer PE File .NET EXE PE32 Malware download njRAT VirusTotal Malware PDB suspicious privilege Check memory Checks debugger ICMP traffic unpack itself ComputerName		2	1	4.2		50	ZeroCERT

3	2021-09-17 09:59	MVTT.exe 7bc69f6fac0d853781b1a72cba8c770f Generic Malware Antivirus PE File .NET EXE PE32 VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process AppData folder Windows ComputerName Cryptographic key				6.0	M	52	ZeroCERT

4	2021-07-23 17:35	OneDrivenwt2.exe 825680fcd827a75499de67c7fa7ad684 Generic Malware Malicious Packer PE32 .NET EXE PE File Malware download njRAT VirusTotal Malware PDB suspicious privilege Check memory Checks debugger ICMP traffic unpack itself ComputerName		2	1	4.4	M	30	ZeroCERT

5	2021-07-23 17:22	OneDrive.exe e419475aef86f5fd60955c438d46209d RAT Generic Malware Malicious Packer PE32 .NET EXE PE File Malware download njRAT VirusTotal Malware PDB suspicious privilege Check memory Checks debugger ICMP traffic unpack itself ComputerName		2	1	4.2		27	ZeroCERT

6	2021-07-23 09:43	onedrive.exe d0aa862e7e3d80ed48ab0bfe0eb3dec8 RAT Generic Malware Malicious Packer PE32 .NET EXE PE File Malware download njRAT VirusTotal Malware PDB suspicious privilege Check memory Checks debugger unpack itself ComputerName		2	1	3.4	M	22	ZeroCERT

7	2021-06-03 21:23	ETC2.exe 340fc80338a3c3c557374768a228a1e6 PE File PE64 VirusTotal Malware MachineGuid Malicious Traffic Check memory Checks debugger unpack itself Tofsee Windows DNS	4 Keyword trend analysis Info http://r2---sn-3u-bh2z7.gvt1.com/edgedl/release2/update2/AIUdiWYcaIvMz1IBNCM0PPo_1.3.36.82/GoogleUpdateSetup.exe?cms_redirect=yes&mh=ms&mip=175.208.134.150&mm=28&mn=sn-3u-bh2z7&ms=nvh&mt=1622722580&mv=m&mvi=2&pl=18&rmhost=r6---sn-3u-bh2z7.gvt1.com&shardbypass=yes&smhost=r6---sn-3u-bh2sy.gvt1.com http://redirector.gvt1.com/edgedl/release2/update2/AIUdiWYcaIvMz1IBNCM0PPo_1.3.36.82/GoogleUpdateSetup.exe https://update.googleapis.com/service/update2 https://update.googleapis.com/service/update2?cup2key=10:2447884964&cup2hreq=a27df1d7403d37620c0c0dbf011f52828841c05d16d94ef1dc6b40b7e9cf943f	2	4	4.4	M	40	ZeroCERT

8	2021-06-03 21:22	A4.exe 6972482b38fda49d5ea9f11bd2496909 BitCoin AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces Windows DNS Cryptographic key crashed	1 Keyword trend analysis	1		9.6	M	24	ZeroCERT