Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	Player
15256	2023-03-05 04:20	http://94.26.226.51/panel/new_... ba40c472200733aebad89bc5e5c2ebd0 PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM MSOffice File PE File PE64 Malware Code Injection Malicious Traffic exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	4	4.8	M	guest

15257	2023-03-05 04:20	http://163.123.143.4/EXT/metai... AntiDebug AntiVM MSOffice File PNG Format JPEG Format Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		1	2	4.8		guest

15258	2023-03-05 04:19	http://163.123.143.4/EXT/metai... PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM PNG Format MSOffice File JPEG Format Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	2	5.8		guest

15259	2023-03-05 04:18	http://185.246.221.126/bins/Am... 17a8f85f937d8106c020a366d7c6ccb4 PWS[m] Downloader Malicious Packer UPX Malicious Library Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM MSO Malware Code Injection Malicious Traffic Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder malicious URLs Tofsee Windows Exploit DNS crashed		1	5	6.0	M	guest

15260	2023-03-05 04:18	http://94.26.226.51/panel/new_... 9275ae35733730eda1da5e7e29bdf8db PWS[m] Downloader Malicious Library Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM PE File PE64 MSOffice Fi Malware Code Injection Malicious Traffic exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	4	4.8	M	guest

15261	2023-03-05 04:17	http://94.26.226.51/panel/new_... a58f0e04f4b55b5718ac0b1fa6b13d98 Malicious Packer Malicious Library AntiDebug AntiVM PE File PE64 Malware Code Injection Malicious Traffic exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		1	4	3.8	M	guest

15262	2023-03-05 04:16	http://94.26.226.51/panel/new_... cc074e25e77d6a797edffea9cfc92662 PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM DLL PE File PE64 MSOffice File Malware Code Injection Malicious Traffic exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	4	4.8	M	guest

15263	2023-03-05 04:15	http://94.26.226.51/panel/new_... e8ee21f5fde8922468a84b4754ec6aec PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM MSOffice File DLL PE File PE64 Malware Code Injection Malicious Traffic exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	4	4.8	M	guest

15264	2023-03-05 04:14	https://vk.com/doc10773776_660... 413951d78ff6511e4ebb962c48f852ad AntiDebug AntiVM MSOffice File Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed	48 Keyword trend analysis Info https://vk.com/doc10773776_660061521?hash=zhMo4lmkbD7KIsDYRYkHyGHauSk74UhyRoczpfUZotz&dl=GEYDONZTG43TM:1677236043:ykJwB8SHozZSshsdwaLygwtKhdsQQDTzbewWHuzgaE4&api=1&no_preview=1 https://st6-22.vk.com/dist/web/ui_common.84e2442a05004320e11f.js?6245ba39b63448019203f2729b74d21f https://vk.com/dist/web/language.13cbd4193255cbaaab3a.js?c9e9113960ae98d68204079f43f790dd https://st6-22.vk.com/dist/web/polyfills/canvas_to_blob.e77dcc6129127456cc4f.js?6a4a06039f2295cdc4f936f4051ae4d3 https://st6-22.vk.com/dist/web/polyfills/array_functions.5ed53e616feed60bc4e8.js?53b5630d9d361c93a7d8a918fd06d21d https://st6-22.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23 https://vk.com/js/lang17_0.js?27965946 https://st6-22.vk.com/css/al/uncommon.431a60ba5d2797d2fdb1.css https://st6-22.vk.com/css/al/fonts_cnt.a289ed70815ffbd082ae.css https://st6-22.vk.com/dist/vkcom-kit.a7d2347300fcdde7314f.js? https://st6-22.vk.com/css/al/ui_common.0a29c544720bdcf89154.css https://st6-22.vk.com/dist/web/polyfills/other_functions.4de689b5f53cdbdebf7d.js?8c0d070969c2bdddf902 https://st6-22.vk.com/dist/state-management.a54b236ef99f71c730de.js?503a0b3068ebfc42423d https://st6-22.vk.com/css/al/base.1c25eeb7ac42cd36d08a.css https://st6-22.vk.com/dist/web/polyfills/string_functions.d2f7aff1dc899fb950c4.js?06c31459c645dd6049c4d07642d01d54 https://st6-22.vk.com/dist/common.ca1f22646967566b8a79.js?313ec3f775a31892f568f1d https://vk.com/js/lib/px.js?ch=2 https://vk.com/js/lib/px.js?ch=1 https://st6-22.vk.com/dist/web/polyfills/resize_observer.233e96db629d43de3623.js?685418a51d9509d705d3 https://st6-22.vk.com/dist/web/unauthorized.b7057b2c97d6727decd8.js?e26656d2ddb168519bdb1f04edf58369 https://st6-22.vk.com/dist/web/polyfills/intersection_observer.0062cad0ff26ba906a55.js?3651dae73da1d676cd37 https://st6-22.vk.com/dist/web/page_layout.5672d3fc73a320a2be06.js?f032491390251591131dd5c0659e5ead https://st6-22.vk.com/css/al/common.a393edc4164b1b81495c.css https://st6-22.vk.com/dist/vkcom-kit.1681489e5ef06505d479.css https://st6-22.vk.com/dist/web/common_web.3a98749ca45868f84306.css https://st6-22.vk.com/css/al/fonts_utf.2546d253c69649b0561c.css https://st6-22.vk.com/dist/web/performance_observers.2498c067f2dd4f142b98.js?39ba189ff3c74982dba3105279a1e431 https://st6-22.vk.com/dist/web/polyfills/element_functions.7f6f4401ad09c642705f.js?f88d496bc9aa020bbceb949a351fa85a https://st6-22.vk.com/dist/audioplayer.a025fbbc26f0baaf6890.js?31337e095824bcf8034a4f5 https://vk.com/badbrowser_stat.php?act=track&event=showAlert_atom https://st6-22.vk.com/dist/web/polyfills/promise_functions.66c5719129d3a45c5b29.js?c08a609e174e79347eaf8c692cf63cf3 https://st6-22.vk.com/dist/web/docs.6d9ff04ed31e8fa804a8.js?cca036aa8769d40ddfa14e3fbd15949c https://st6-22.vk.com/images/upload.gif https://st6-22.vk.com/dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126 https://st6-22.vk.com/dist/web/css_types.9345eb394b7d4d7e68a9.js?f6dbdbc1de537596e14e https://st6-22.vk.com/dist/web/polyfills/object_functions.06c76fa223949a027bf2.js?e8b681406f943258346d7925b82e6243 https://st6-22.vk.com/images/backlink.gif?4 https://st6-22.vk.com/dist/web/common_web.c98533736ab3d5f6f60d.js? https://st6-22.vk.com/dist/palette.28ed80ebcd89c370bca4.js?ceacf32c0417ea87ee9e https://st6-22.vk.com/css/al/vkui.9a6b5aa7dbb00c120b74.css https://st6-22.vk.com/dist/web/jobs_devtools_notification.eafd4d4aa0ae5bbfd7e6.js?a73adfb8fd6e0413085d78a67df5c20f https://st6-22.vk.com/dist/vkui.e4d670f36de4368e7b1a.js?53396daa49f4462b4a11 https://vk.com/js/loader_nav20746467872_17.js https://vk.com/badbrowser_stat.php?act=nomodule https://st6-22.vk.com/dist/web/grip.16ff158c2e1e11fd3b80.js?28c136bb922051f2f6b95a6a08ccc41f https://st6-22.vk.com/dist/web/polyfills/cookie_manager.8cfe6896e33857a19781.js?0afee3c7b5f648f55648a21de4cfaae9 https://vk.com/images/icons/favicons/fav_logo.ico?6 https://st6-22.vk.com/dist/web/likes.5170c24445a69da4da21.js?ec4d1f4027dfa57b38816d57a184cf8d	6	3	4.2		guest

15265	2023-03-05 04:13	http://94.26.226.51/panel/new_... 507d37544705bca11894108add996eca PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM MSOffice File DLL PE File PE64 Malware Code Injection Malicious Traffic exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	4	4.8	M	guest

15266	2023-03-05 04:12	http://94.26.226.51/panel/new_... 30740716a5aaaeca0fb5565fbf2d596e AntiDebug AntiVM DLL PE File PE64 Malware Code Injection Malicious Traffic RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit DNS crashed		1	2	4.2	M	guest

15267	2023-03-05 04:11	http://timenow.pw/exe/WindowsA... PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs suspicious TLD Tofsee Windows Exploit DNS crashed	1 Keyword trend analysis	2	5	5.2		guest

15268	2023-03-05 04:11	http://respekt5568.com/aN7jD0q... 1b171f9a428c44acf85f89989007c328 PWS[m] Gen1 Downloader UPX Malicious Library Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM MSOffice File O Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder malicious URLs Tofsee Windows Exploit DNS crashed	1 Keyword trend analysis	2	4	4.6		guest

15269	2023-03-05 04:10	http://94.26.226.51/panel/new_... cdb7fe8228526e485672af749889ef1d AntiDebug AntiVM DLL PE File PE64 Malware Code Injection Malicious Traffic RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		1	4	4.2	M	guest

15270	2023-03-05 04:10	https://167.179.114.189/push PWS[m] Downloader Create Service DGA Socket ScreenShot DNS Internet API Code injection Hijack Network Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges persistence FTP Http API AntiDebug AntiVM PNG Format MSOffice File JPEG Format Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		1	2	5.8		guest

Submissions

ba40c472200733aebad89bc5e5c2ebd0

17a8f85f937d8106c020a366d7c6ccb4

9275ae35733730eda1da5e7e29bdf8db

a58f0e04f4b55b5718ac0b1fa6b13d98

cc074e25e77d6a797edffea9cfc92662

e8ee21f5fde8922468a84b4754ec6aec

413951d78ff6511e4ebb962c48f852ad

507d37544705bca11894108add996eca

30740716a5aaaeca0fb5565fbf2d596e

1b171f9a428c44acf85f89989007c328

cdb7fe8228526e485672af749889ef1d

View

Insert

Alert