Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	VT	Player
196	2025-04-18 04:13	101b0dde494e0783_nuw542bho60[1... 559f83c6258da8670b8a879a7f2697dc crashed				0.2		guest

197	2025-04-18 03:51	photo.htm e030e64f0874a226ff367aac2c0fd45d Javascript_Blob AntiDebug AntiVM MSOffice File Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Tofsee Windows	9 Keyword trend analysis Info https://static.xx.fbcdn.net/rsrc.php/v4ikYC4/ye/l/pl_PL/4UJPryDl6vQ.js https://static.xx.fbcdn.net/rsrc.php/v4/yf/r/1Fs8rBQNSz9.js https://static.xx.fbcdn.net/rsrc.php/v4ii3Z4/yC/l/pl_PL/yosNSWC8z_t.js https://static.xx.fbcdn.net/rsrc.php/v4iiH84/y-/l/pl_PL/gYR6XdR5Jlz.js https://static.xx.fbcdn.net/rsrc.php/v4ih9w4/yH/l/pl_PL/u5eNGFq3WhgRnT2Z3dd70t0BUXE7BctrMPOyxLFPsfmEuk8vLtdffcjlUV7BVDeuTY5KnvPi9YnXpZxNQZM-9qQm9FNo6EWfQ8TbUQ5LoxjLorwy1DKBSsTAnxMKEPueP2LsGoiMt_RY_Bx4ZxpRYeCkYXwettdgmkSZ1wuvR42D6xbRi0SBmuDjByG_AXEDxgHlco1Rdzuzi16ygzT1sbQZyoV41jlFha1shB9W520aphfApDHnsYNsuC0kULDczav0pBCHyQAQhgl2OqFfuFZO4v9aC1p55HfXW__mMzi95_wmB-51MKSPKuAkuWtGsXcG4xa-CQ.js https://static.xx.fbcdn.net/rsrc.php/v4i3Z54/y-/l/pl_PL/QI6a6eMB_Rd.js https://static.xx.fbcdn.net/rsrc.php/v5/yP/l/0,cross/hdizZSl7vs1pXN_QbzK5g5.css https://static.xx.fbcdn.net/rsrc.php/v4i1hI4/yB/l/pl_PL/iZlynKqupyeJxZpg7m_h7q81-kCxOHvH-jJTXU6VJG0Kqf4IO3ef2VeaNyM5x7xjrVVSiB1Bshw99hbqzKu9tM7F_Y7Xk1cp1ZY2YkxqMpyzfiubWjH6HmqBA3tJbBUoPL58XEhTixJo7zxRE8M1ZFyQWnT9xFtruSNYVw8-m6b_Uv7ObcEfnFd0zmg_Lq0Ssl_q8so13prljcrpG.js https://static.xx.fbcdn.net/rsrc.php/v4ioN94/ys/l/pl_PL/NuW542bho60.js	2	1	3.0		guest

198	2025-04-18 01:54	chrome.exe 38f0393950d85c552554dfcfb99d328a Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check Browser Info Stealer PDB MachineGuid Code Injection Checks debugger exploit crash installed browsers check Exploit Browser RCE crashed				3.8		guest

199	2025-04-18 01:53	Ginko.Garden - ???????? W Gink... 5decbed192399d909d700354cefd3a15 AntiDebug AntiVM PNG Format MSOffice File JPEG Format Code Injection RWX flags setting unpack itself Windows utilities Tofsee Windows	3 Keyword trend analysis Info https://static.xx.fbcdn.net/rsrc.php/v4/yi/r/VGRmPFR7O7_.png https://static.xx.fbcdn.net/rsrc.php/v4/yO/r/SKIxuY15z3q.png https://scontent-ber1-1.xx.fbcdn.net/v/t39.30808-1/454313341_122174066318224418_2919661226072316893_n.jpg?stp=cp0_dst-jpg_s40x40_tt6&_nc_cat=104&ccb=1-7&_nc_sid=2d3e12&_nc_ohc=FBWb0LbmUTwQ7kNvwFE3duC&_nc_oc=Adm7Fg9e_o5YFFQnFGMt7eKIklC05n3dxtOdgxAnCSbsSTit4fXephzYzUMq7eOVWkk&_nc_zt=24&_nc_ht=scontent-ber1-1.xx&_nc_gid=ZV6XyC-ZO2oVvABvRO1TUA&oh=00_AfHAM0NbhMtOlNXww1Ap0X4i2yjW-pLP9X3cHVoMWggNKQ&oe=6805F519	4	1	2.6		guest

200	2025-04-18 01:03	http://www.cipd.org/globalasse... 4e58a191b515eed2a9894dc8698bc5c0 Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM MSOffice File PNG Format JPEG Format Code Injection RWX flags setting unpack itself Windows utilities malicious URLs Tofsee Windows	1 Keyword trend analysis	2	2	3.0		guest

201	2025-04-18 00:36	chrome.exe 38f0393950d85c552554dfcfb99d328a Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check PDB RCE				0.6		guest

202	2025-04-17 10:58	RE_09JUKS74392048_pdf.wsf 6632b60dd38f1618b52fcbecc455ebf3 VirusTotal Malware	1 Keyword trend analysis			0.4	4	ZeroCERT

203	2025-04-17 10:36	system.exe 34d81029034a8c04d66fcc1ca3b3f7f2 UPX PE File PE64 ftp OS Processor Check VirusTotal Malware				1.2	47	ZeroCERT

204	2025-04-17 10:35	RE_09JUKS74392048_pdf.wsf 6632b60dd38f1618b52fcbecc455ebf3 VirusTotal Malware	1 Keyword trend analysis			0.4	4	ZeroCERT

205	2025-04-17 10:28	ken.wsh 8aaa430eb61ff8b399b54bb6355b647d AntiDebug AntiVM VirusTotal Malware Code Injection unpack itself crashed	1 Keyword trend analysis			2.6	4	ZeroCERT

206	2025-04-17 10:12	kimsuky_xls.lnk a9b1c04438930c0c7cff3fe8e8520317 Generic Malware task schedule Antivirus AntiDebug AntiVM Lnk Format GIF Format VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key	2 Keyword trend analysis			6.4	17	ZeroCERT

207	2025-04-17 10:05	RE_007394029384393483.pdf.lnk bd198f0891ebf2cc898a80cd9c83c686 Generic Malware AntiDebug AntiVM Lnk Format GIF Format VirusTotal Malware Code Injection Check memory Creates shortcut unpack itself suspicious process	1 Keyword trend analysis			3.0	14	ZeroCERT

208	2025-04-17 00:08	getif-2.3.1.zip 6dc2fe6600dca6f2b62b3b05977294af ZIP Format						guest

209	2025-04-17 00:08	_user1.cab 45ad4d792db670366504974826dbbadc Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM MSOffice File Code Injection RWX flags setting unpack itself Windows utilities malicious URLs Tofsee Windows			1	2.6		guest

210	2025-04-17 00:08	_sys1.cab fe9c552fd26fe5e5ba61b7f8eebc4a41 Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM MSOffice File Code Injection RWX flags setting unpack itself Windows utilities malicious URLs Tofsee Windows	1 Keyword trend analysis	2	1	3.6		guest