Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
22366	2022-12-13 10:05	Tastevins.exe e6e0579ee6e5aa130fcf50e5646da5f7 PWS Loki[b] Loki.m Gen1 Confuser .NET UPX Malicious Library Malicious Packer AntiDebug AntiVM PE32 .NET EXE PE File OS Processor Check DLL Browser Info Stealer Malware download FTP Client Info Stealer Vidar VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency Buffer PE MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications malicious URLs sandbox evasion anti-virtualization installed browsers check Tofsee Mars Stealer Stealer Windows Browser Email ComputerName DNS Cryptographic key Software crashed	6 Keyword trend analysis	5	4	3	17.8	M	40	ZeroCERT

22367	2022-12-13 10:04	이상민.docx f64b643de2bc7c368b0a13d12c584a09 Doc XML Downloader Word 2007 file format(docx) VirusTotal Malware powershell AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files exploit crash unpack itself powershell.exe wrote suspicious process AntiVM_Disk sandbox evasion Ransom Message VM Disk Size Check Windows Exploit ComputerName DNS Cryptographic key crashed	3 Keyword trend analysis	1	6	2	12.4	M	19	ZeroCERT

22368	2022-12-13 10:01	DevSt.exe 97824a1a018a194220866d5548eeff95 Malicious Library Malicious Packer UPX OS Processor Check PE File PE64 Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency MachineGuid Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities suspicious process Ransomware Windows Browser Email ComputerName DNS crashed		1	1		9.4		45	ZeroCERT

22369	2022-12-13 09:59	devalt.exe fc9ea28a3c3659c4200e442d20198458 Gen2 RAT Gen1 Malicious Library UPX AntiDebug AntiVM PE32 OS Processor Check PE File .NET EXE VirusTotal Malware PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger Creates executable files unpack itself AntiVM_Disk WriteConsoleW VM Disk Size Check ComputerName RCE					7.4	M	55	ZeroCERT

22370	2022-12-13 09:58	Dll%20Injector%20V1%20Full%E2%... 556084cf64aec63e0babdf10a61afaa6 Malicious Packer Socket AntiDebug AntiVM PE32 .NET EXE PE File PE64 VirusTotal Malware Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Tofsee crashed DoTNet		2	3		8.2	M	47	ZeroCERT

22371	2022-12-13 09:57	nulight2.1.exe ab56062f34be6231548dc9e794f20784 Malicious Library UPX PE32 PE File OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces AppData folder IP Check Tofsee Windows Browser Email ComputerName Cryptographic key Software crashed keylogger		2	1		8.8	M	21	ZeroCERT

22372	2022-12-13 09:56	DEVMin.exe 279c66b28f19a510ad6c0f155871fac3 Malicious Library PE File PE64 VirusTotal Malware					1.6	M	49	ZeroCERT

22373	2022-12-13 09:55	limalt.exe 8468c0223b7665174d19866d33ae9731 Gen2 RAT Gen1 Malicious Library UPX AntiDebug AntiVM PE32 OS Processor Check PE File .NET EXE VirusTotal Malware PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger Creates executable files unpack itself AntiVM_Disk WriteConsoleW VM Disk Size Check ComputerName RCE					7.4	M	42	ZeroCERT

22374	2022-12-13 09:54	1055716893.exe d2bad349906b711cf59df7178146abff Malicious Library UPX PE32 PE File OS Processor Check Browser Info Stealer VirusTotal Malware buffers extracted Creates executable files Browser DNS crashed	1 Keyword trend analysis	2	1		3.8	M	22	ZeroCERT

22375	2022-12-13 09:52	LIMSt.exe b26439eb7f5e2a7f1e2dabcfa8e3a7b1 Malicious Library Malicious Packer UPX OS Processor Check PE File PE64 Browser Info Stealer VirusTotal Email Client Info Stealer Malware MachineGuid Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities suspicious process Ransomware Windows Browser Email ComputerName DNS crashed		1	1		7.8	M	49	ZeroCERT

22376	2022-12-13 09:51	LIMMin.exe d0525e69e54066d5b3764acefd16a754 Malicious Library PE File PE64 VirusTotal Malware					1.6	M	51	ZeroCERT

22377	2022-12-13 08:04	o19wzg.dotm 03cea7c49abe78863ae2644ac77c8efb VBA_macro Word 2007 file format(docx) VirusTotal Malware powershell AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote suspicious process AntiVM_Disk sandbox evasion Ransom Message VM Disk Size Check installed browsers check Windows Browser ComputerName DNS Cryptographic key	1 Keyword trend analysis	1	5		12.8	M	33	ZeroCERT

22378	2022-12-13 08:04	12341rgergg435g4tr.exe df7a9a45a10c1942225eb9be257fb752 Generic Malware Antivirus PE32 PE File VirusTotal Malware AutoRuns suspicious privilege Check memory Creates shortcut AntiVM_Disk sandbox evasion Ransom Message VM Disk Size Check installed browsers check Windows Browser					6.0	M	51	ZeroCERT

22379	2022-12-12 17:55	zawtop.exe fd5f9af4be0f079fb9cfbce31544d6ea RAT Generic Malware Antivirus Hide_URL PE32 .NET EXE PE File PowerShell Malware download VirusTotal Malware powershell PDB suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Check virtual network interfaces suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key	1 Keyword trend analysis	1	2		10.0	M	41	ZeroCERT

22380	2022-12-12 17:54	43.exe d8d8cb60d196a26765261b1ca8604d1e Malicious Library PE32 PE File VirusTotal Malware RWX flags setting unpack itself ComputerName DNS		1			4.8	M	57	ZeroCERT