Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
1621	2024-08-05 07:56	system.exe b79c7a3ce694f09a0b4aaa70a4c9fd29 Gen1 Emotet Generic Malware Malicious Library ASPack UPX Malicious Packer Admin Tool (Sysinternals etc ...) PE File PE32 OS Processor Check DLL ZIP Format DllRegisterServer dll Check memory Checks debugger Creates executable files AppData folder				1.6	M		ZeroCERT

1622	2024-08-05 07:55	Caesar.exe 55cdae2ebedb6d9a667832ffb16bd7a9 UPX PE File PE64					M		ZeroCERT

1623	2024-08-05 07:54	2.exe ae787a8df10831e433bd33b6674e612e UPX PE File PE64 unpack itself DNS crashed		1		2.8	M		ZeroCERT

1624	2024-08-05 07:53	RingQ.exe 76b660aeed75fd20555985ca7c7c1edd Generic Malware UPX PE File PE64 OS Processor Check Remote Code Execution crashed				1.2	M		ZeroCERT

1625	2024-08-05 07:51	abc.exe ad1046db81c3734f859e2a3428ab9996 Generic Malware Malicious Library ASPack UPX PE File PE32 OS Processor Check Check memory Creates executable files crashed				0.8			ZeroCERT

1626	2024-08-05 07:49	111.exe 89b20c121c799ab935bca4ce11e94b5b PE File PE64 Check memory RWX flags setting unpack itself DNS crashed		1		4.0			ZeroCERT

1627	2024-08-05 07:47	abc.exe 37fa8c1482b10ddd35ecf5ebe8cb570e Malicious Packer UPX PE File PE32 unpack itself DNS		1		2.8	M		ZeroCERT

1628	2024-08-05 07:47	r.exe acc4944e363d62de63208ce558964af3 Malicious Packer PE File .NET EXE PE32 PDB Check memory Checks debugger unpack itself suspicious process WriteConsoleW ComputerName				1.8	M		ZeroCERT

1629	2024-08-04 18:05	theoryspecializedpro.exe 680af4923dc7b8ce1c06516ce06d17d3 Gen1 Emotet RedLine stealer Malicious Library UPX .NET framework(MSIL) PE File PE64 CAB .NET EXE PE32 OS Processor Check VirusTotal Malware AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself AppData folder WriteConsoleW Windows ComputerName Remote Code Execution				5.0		54	ZeroCERT

1630	2024-08-04 18:02	mrsprojectionspro.exe 75097944c089d35d77e365650435f1e8 Gen1 Emotet Malicious Library UPX Malicious Packer .NET framework(MSIL) PE File PE64 CAB .NET EXE PE32 VirusTotal Malware AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself AppData folder Windows ComputerName Remote Code Execution				5.0		52	ZeroCERT

1631	2024-08-04 18:02	sisterleadpro.exe de09178279dc2c6cc007882395325c61 Gen1 Emotet Malicious Library UPX .NET framework(MSIL) PE File PE64 CAB .NET EXE PE32 VirusTotal Malware AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself AppData folder Windows ComputerName Remote Code Execution				5.0		53	ZeroCERT

1632	2024-08-04 18:01	sostener.vbs 4251cdf5118a888228fb3b5b2bf6b8e8 Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	1 Keyword trend analysis	2	1	10.0		16	ZeroCERT

1633	2024-08-04 17:59	mycuteflowergirlsheisneedmetoo... e0f24c59ceb5803155f7c2cac0043688 Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	1 Keyword trend analysis	2	1	7.6	M	5	ZeroCERT

1634	2024-08-04 17:58	mycuteflowergirlsheisneedmetoo... e0f24c59ceb5803155f7c2cac0043688 Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	1 Keyword trend analysis	2	1	7.6	M	5	ZeroCERT

1635	2024-08-04 17:57	nativee.jpg.exe d4a731a4d6b8b45908fcf6b12fd50e4d Generic Malware Malicious Library UPX PE File DLL PE32 .NET DLL OS Processor Check VirusTotal Malware PDB				0.6		1	ZeroCERT