Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
2206	2024-07-15 09:29	SIP.03746.XSLSX.exe a3e681364daaa68ce0177581573f483f Emotet Generic Malware Malicious Library Antivirus UPX Confuser .NET .NET framework(MSIL) AntiDebug AntiVM DllRegisterServer dll PE File PE32 MZP Format PowerShell CAB .NET EXE VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger Creates shortcut Creates executable files unpack itself powershell.exe wrote Check virtual network interfaces suspicious process suspicious TLD anti-virtualization installed browsers check Tofsee Windows Browser ComputerName Cryptographic key		3	2	12.2		38	ZeroCERT

2207	2024-07-15 09:28	nlb.txt.vbs afd1fa691ac9b0ab5b39fd8a0d0e40d7 Generic Malware Antivirus PowerShell VirusTotal Malware powershell AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName DNS Cryptographic key	1 Keyword trend analysis	2	3	10.6	M	10	ZeroCERT

2208	2024-07-15 09:27	dmi.txt.vbs 7e4e5ec429a0738c15593112bcf50406 Generic Malware Antivirus PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key	1 Keyword trend analysis			6.2	M	23	ZeroCERT

2209	2024-07-15 09:21	nlb.txt.vbs afd1fa691ac9b0ab5b39fd8a0d0e40d7 Antivirus VirusTotal Malware				0.6	M	10	ZeroCERT

2210	2024-07-15 09:21	dmi.txt.vbs 7e4e5ec429a0738c15593112bcf50406 Antivirus VirusTotal Malware				0.8	M	23	ZeroCERT

2211	2024-07-15 09:19	pqjvyogm.exe 6498c822022751dbe8abb655e6ac9db0 PE File .NET EXE PE32				0.4	M		ZeroCERT

2212	2024-07-15 09:19	AntiVirus2.exe e81179996dbd2490c45ca13d80eae0a8 PE File .NET EXE PE32 VirusTotal Malware				1.6	M	58	ZeroCERT

2213	2024-07-15 09:19	1PDF.FaturaDetay_202407.exe d8bf792f818877bf4848fde9511caeb8 Malicious Library Antivirus UPX DllRegisterServer dll PE File PE32 MZP Format VirusTotal Malware				1.6		44	ZeroCERT

2214	2024-07-15 09:19	SIP.03746.XSLSX.exe a3e681364daaa68ce0177581573f483f Malicious Library Antivirus UPX DllRegisterServer dll PE File PE32 MZP Format VirusTotal Malware				1.4		38	ZeroCERT

2215	2024-07-15 09:19	217.exe 42e2d273ee6215957f2b979737a74b45 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware				1.2		26	ZeroCERT

2216	2024-07-14 18:02	random.exe f7a1094ec901c30a546487c8aa2a3093 EnigmaProtector PE File PE32 VirusTotal Malware Check memory ICMP traffic unpack itself Collect installed applications sandbox evasion anti-virtualization installed browsers check Browser ComputerName DNS crashed	1 Keyword trend analysis	1		7.8	M	64	ZeroCERT

2217	2024-07-14 18:00	Sazae-1.exe 4695f98bf6e8c0908c0b6af77ec31a6c Emotet Hide_EXE Malicious Library .NET framework(MSIL) UPX Anti_VM PE File .NET EXE PE32 OS Processor Check VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Windows ComputerName Cryptographic key				2.8	M	61	ZeroCERT

2218	2024-07-14 17:58	potkmdaw.exe cefc3739d099bae51eb2a9d3887ac12c Generic Malware Downloader Malicious Library UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM PE File PE64 OS Proces VirusTotal Malware PDB MachineGuid Code Injection Creates executable files ICMP traffic AppData folder Remote Code Execution DNS		1		7.4	M	49	ZeroCERT

2219	2024-07-14 17:58	fatherscientificpro.zip 23cad24465d730936b5c3d2b7de5bfd1 ZIP Format VirusTotal Malware				1.2	M	42	ZeroCERT

2220	2024-07-14 17:56	1.exe 2b292145e4ec28e8bd8b22c1353543d1 Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware unpack itself				2.2	M	34	ZeroCERT