Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1	2024-07-01 16:46	Update.js 365d4f4e6ffed01288e0fae6e352e8a5 VBScript wscript.exe payload download Tofsee crashed Dropper	1 Keyword trend analysis	2	2	10.0			guest

2	2024-06-29 15:24	lamda.cmd b9b513ba600e0bbf6f72129ba99ba72e Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM powershell suspicious privilege Check memory Checks debugger heapspray Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key	6 Keyword trend analysis			3.6	M		ZeroCERT

3	2024-06-27 13:25	Result_2024-0617.pdf.jse 20e2de2d794dfff774b71b6dd2294a96 Client SW User Data Stealer browser info stealer Generic Malware Suspicious_Script_Bin Hide_EXE Google Chrome User Data Downloader Antivirus Malicious Library Malicious Packer UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal cr Browser Info Stealer VirusTotal Malware United States powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger Creates shortcut exploit crash unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW installed browsers check Windows Exploit Browser ComputerName Cryptographic key crashed	1 Keyword trend analysis	1	1	13.0		24	ZeroCERT

4	2024-06-27 10:07	w624.vbs c2ab43cad589673051ce723bc3b37392 VirusTotal Malware VBScript AutoRuns WMI wscript.exe payload download unpack itself AntiVM_Disk IP Check VM Disk Size Check Windows ComputerName DNS DDNS Dropper	2 Keyword trend analysis	4	2	10.0		27	ZeroCERT

5	2024-06-24 15:51	pumairld.txt.ps1 19a7f5e2e7fd8e14d8129dcdf6c8b992 Generic Malware Antivirus VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows Discord ComputerName DNS Cryptographic key		2	3	8.4		17	ZeroCERT

6	2024-06-24 15:45	nyctalopicAWm.ps1 ce1d9b1f2993eb46aa483c2f5790ad58 Generic Malware Antivirus VirusTotal Malware Check memory Checks debugger unpack itself WriteConsoleW Windows ComputerName Cryptographic key crashed	1 Keyword trend analysis			3.0		22	ZeroCERT

7	2024-06-24 15:32	pinspotterEtbYF.php.ps1 b07664f8abb0f1883e2adaa70e10ffcb Generic Malware Antivirus unpack itself WriteConsoleW Windows Cryptographic key	1 Keyword trend analysis			0.8			ZeroCERT

8	2024-06-21 09:45	Invoice.bat 45c581bf3caca47ff9f0515f42571935 Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key				5.2			ZeroCERT

9	2024-06-21 09:45	Invoice.bat 4e93a25a919fdb46bd3155c66cb16c61 Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key				5.6		4	ZeroCERT

10	2024-06-21 01:03	com_apple_MobileAsset_UAF_Siri... e08e4d148aadeabb7278fce7a60aa79d AntiDebug AntiVM MSOffice File Code Injection buffers extracted RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit DNS crashed				4.2			guest

11	2024-06-21 00:43	O.txt 5065fb226090c29069f235a546e8468e Schwerer ScreenShot AntiDebug AntiVM OS Processor Check Check memory unpack itself				1.0			guest

12	2024-06-20 18:22	O.txt 5065fb226090c29069f235a546e8468e Schwerer ScreenShot AntiDebug AntiVM OS Processor Check Check memory unpack itself				1.0			guest

13	2024-06-20 18:07	fsck_apfs.log 58bf695cc00c2b24537191a772cc4fd7 ScreenShot AntiDebug AntiVM Check memory unpack itself				1.0			guest

14	2024-06-20 17:49	bootstrap.min_6dc23c90441eefdb... 3afe15e976734d9daac26310110c4594 ScreenShot AntiDebug AntiVM Check memory unpack itself				1.0			guest

15	2024-06-19 13:36	vc.txt.vbs f6f5a4cce34ca5129908c36df08d4f1a Generic Malware Antivirus PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed	1 Keyword trend analysis			6.0	M	8	ZeroCERT