Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	VT	Player
2221	2025-02-03 10:30	goodboy.exe 11ad0f71caabbadba8ca08663690ca39 Gen1 Emotet Malicious Library UPX .NET framework(MSIL) Malicious Packer PE File PE64 CAB .NET EXE PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Malware AutoRuns PDB suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces AppData folder IP Check Windows Browser ComputerName RCE DNS Cryptographic key Software	1 Keyword trend analysis	2	2	8.6	42	ZeroCERT

2222	2025-02-03 10:30	home.exe c3b7240c2743579a5eb724bef2e9f106 Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware PDB DNS		1		2.6	29	ZeroCERT

2223	2025-02-03 10:30	systemetape.exe 545b933cac5def6ec43ca2cb6eac9d8e Malicious Library .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Buffer PE Check memory Checks debugger buffers extracted unpack itself ComputerName				3.6	57	ZeroCERT

2224	2025-02-03 10:28	25.exe 82575c3b5ffd6f4dbb50b30d22f240cb Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE				2.2	55	ZeroCERT

2225	2025-02-03 10:25	din.exe d357eaf4f8c1e6e5839158ae76148c95 Generic Malware Malicious Library UPX PE File PE32 CAB OS Processor Check VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files unpack itself Windows utilities suspicious process AppData folder sandbox evasion WriteConsoleW Windows ComputerName				7.2	41	ZeroCERT

2226	2025-02-03 10:24	35.exe 076f846121b6425db3e0bbf670ac0e7d Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE				2.2	55	ZeroCERT

2227	2025-02-03 10:24	smbhost.exe b7c617a44000e6e30462ffdd5a27ba4f Generic Malware PE File PE64 VirusTotal Cryptocurrency Miner Malware unpack itself DNS CoinMiner		5	3	1.8	57	ZeroCERT

2228	2025-02-03 10:23	3.exe 4baf0b102a3fae3a35c57173c191fca1 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE				2.6	51	ZeroCERT

2229	2025-02-03 10:22	lem.exe 7723d62c8a6c95004f746afa54e8460b Generic Malware Malicious Library UPX PE File PE32 OS Processor Check CAB VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files Windows utilities suspicious process AppData folder sandbox evasion WriteConsoleW Windows ComputerName				6.6	39	ZeroCERT

2230	2025-02-03 10:22	svchost.exe 581ac70ff4a1a61e3337bbca6d4b972d Antivirus UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check Windows ComputerName DNS keylogger		1		5.0	58	ZeroCERT

2231	2025-02-03 10:19	41.exe fe39ef84af0348989582186bd57ba303 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE				2.6	56	ZeroCERT

2232	2025-02-03 10:18	cvss.exe 94ad08c4c062395902f0babda98c66c1 Process Kill Generic Malware Malicious Library FindFirstVolume CryptGenKey UPX PE File Device_File_Check PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	2 Keyword trend analysis	6	6 Info ET INFO External IP Address Lookup Domain in DNS Lookup (reallyfreegeoip .org) ET POLICY External IP Lookup - checkip.dyndns.org ET INFO 404/Snake/Matiex Keylogger Style External IP Check ET INFO External IP Lookup Domain in DNS Query (checkip .dyndns .org) ET INFO External IP Lookup Service Domain (reallyfreegeoip .org) in TLS SNI SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)	8.2	38	ZeroCERT

2233	2025-02-03 10:17	svc.exe 8b85497783857bcbc16bc7f0a24a7aec Malicious Library PE File PE32 VirusTotal Malware unpack itself RCE				1.8	53	ZeroCERT

2234	2025-02-03 10:16	6.exe ebb6e511ac2ce8c76dbe6fd308eb27ec Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE				2.6	54	ZeroCERT

2235	2025-02-03 10:15	16.exe 04b5aaf415d009730bc16cab6805ba77 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE				2.6	54	ZeroCERT