Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Player
2011	2025-02-19 11:06	tt012.exe 76283d02eb521a667273085a9068b59d Themida UPX PE File PE32 Checks debugger unpack itself Checks Bios Detects VMWare AntiVM_Disk VMware anti-virtualization VM Disk Size Check Windows crashed				5.0	ZeroCERT

2012	2025-02-19 11:03	cabalmain.exe 1504c256a0a41aa361ccc85e73a6d918 Gen1 Themida Generic Malware EnigmaProtector Malicious Library Malicious Packer Antivirus Downloader UPX Anti_VM PE File ftp DllRegisterServer dll PE32 OS Processor Check				1.0	ZeroCERT

2013	2025-02-19 11:02	update.exe d4318770944feebcb959c1318304be0f Generic Malware Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 Malware PDB suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself Check virtual network interfaces AppData folder Windows Update DNS Cryptographic key	3 Keyword trend analysis	2	4	6.8	ZeroCERT

2014	2025-02-19 10:55	jfufk.exe 92b0881788e7f86b38779db248eb959b Generic Malware Malicious Library UPX PE File PE32 MZP Format buffers extracted unpack itself sandbox evasion Browser				2.4	ZeroCERT

2015	2025-02-19 10:52	ADGService.exe d760d6d65e21de73fedc69a38c5dc0d4 Malicious Library PE File PE64				0.6	ZeroCERT

2016	2025-02-19 10:50	kissingdragonbestloverthinking... 94a3b721c0f09451abe525abe8cf5c32 MS_RTF_Obfuscation_Objects RTF File doc Malware download Vulnerability Malware Malicious Traffic buffers extracted exploit crash unpack itself Exploit DNS crashed	3 Keyword trend analysis	3	6 Info ET POLICY Possible HTA Application Download ET INFO Dotted Quad Host HTA Request ET EXPLOIT SUSPICIOUS Possible CVE-2017-0199 IE7/NoCookie/Referer HTA dl ET EXPLOIT MSXMLHTTP Download of HTA (Observed in CVE-2017-0199) ET MALWARE Base64 Encoded MZ In Image ET MALWARE ReverseLoader Reverse Base64 Loader In Image M2	4.0	ZeroCERT

2017	2025-02-19 10:49	Okfgjrg5d8gt a07b7ca47de7e03b3f4ee5d8468ba8da Generic Malware Malicious Library .NET framework(MSIL) UPX Antivirus PE File PE64 OS Processor Check PowerShell .NET EXE PE32 Cryptocurrency Miner Cryptocurrency powershell AutoRuns PDB suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName RCE Cryptographic key crashed BitCoinMiner CoinMiner		2	1	8.6	ZeroCERT

2018	2025-02-19 10:48	poll.exe f0cd5781e0d4037be6af224c6438ab32 Generic Malware Malicious Library UPX PE File PE32 MZP Format buffers extracted unpack itself sandbox evasion Browser				2.4	ZeroCERT

2019	2025-02-19 10:47	TestLAB.exe 39c2f63970a0b2b1942e7072a6c648dc Gen1 Emotet Generic Malware Malicious Library Antivirus UPX Malicious Packer Anti_VM PE File PE32 OS Processor Check MZP Format DLL PE64 DllRegisterServer dll .NET DLL Buffer PE suspicious privilege Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder sandbox evasion Windows ComputerName Cryptographic key crashed				5.6	ZeroCERT

2020	2025-02-19 10:47	Sun.exe 3affeeda49307427251022fcb3c46f9b Generic Malware Malicious Library Malicious Packer UPX Anti_VM PE File PE64 OS Processor Check PDB DNS		1		1.2	ZeroCERT

2021	2025-02-19 10:45	JHiuhe2rg7tds 3b1bf937711e0b1f3b6e455d535cc4f0 Generic Malware Malicious Library UPX .NET framework(MSIL) PE File PE64 OS Processor Check PowerShell .NET EXE PE32 Cryptocurrency Miner Cryptocurrency powershell AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows RCE DNS crashed BitCoinMiner CoinMiner		3	1	7.4	ZeroCERT

2022	2025-02-19 10:42	Invoice4231284.exe f223c16f11e3c4350f34d51d44498877 njRAT backdoor Generic Malware Malicious Library Antivirus UPX PE File MSOffice File CAB PE32 OS Processor Check OS Name Check DLL PDB suspicious privilege Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check Windows ComputerName RCE DNS Cryptographic key		2	1	5.6	ZeroCERT

2023	2025-02-19 10:41	d.msi ae5b94abf028388af1454ed76806cc6f MSOffice File CAB Remcos suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName DNS		1	1	2.4	ZeroCERT

2024	2025-02-19 10:39	mimikatz.exe 6b5c683727229742a54ef15742b1a351 Generic Malware Malicious Library Antivirus UPX PE File PE32 OS Processor Check PowerShell powershell AutoRuns PDB suspicious privilege Check memory Checks debugger Creates shortcut ICMP traffic unpack itself Windows utilities powershell.exe wrote suspicious process AppData folder sandbox evasion WriteConsoleW Windows Browser ComputerName Cryptographic key				8.2	ZeroCERT

2025	2025-02-19 10:39	toyour.exe 8d04bc23c265be8dc918b1ba7d299cc8 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check PDB WriteConsoleW				0.4	ZeroCERT