Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1	2024-06-07 09:56	igcc.exe fa362d6eab964c2243f02ee774ed6d90 AgentTesla Malicious Library .NET framework(MSIL) PWS SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Software crashed	1 Keyword trend analysis	2	3	12.0	M	53	ZeroCERT

2	2024-06-05 07:43	igcc.exe 01c92d0c5eeee2d1d15b6386f36b8af8 AgentTesla Malicious Library PWS SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer AutoRuns PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Software crashed	1 Keyword trend analysis	2	4	11.0	M		ZeroCERT

3	2024-06-05 07:41	igcc.exe 007c45864ab8a36a66fe21a24797432b Malicious Library PE File .NET EXE PE32 PDB suspicious privilege Code Injection Check memory Checks debugger unpack itself				4.4			ZeroCERT

4	2024-05-17 15:36	smss.exe 8a9978dfed7583d2e18a8fdcd39a2191 AgentTesla Malicious Library .NET framework(MSIL) PWS SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself				7.6	M	45	ZeroCERT

5	2024-05-16 07:29	spoolsv.exe 986a048eb1d47acb95947bc2591d1e9d Malicious Library Malicious Packer .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself				2.4		49	ZeroCERT

6	2023-10-11 07:57	sihost.exe 1d2e25e64e7c402540fa6ce6871257f4 Generic Malware .NET framework(MSIL) Antivirus PWS SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell AutoRuns PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed		3	4	15.0	M	41	ZeroCERT