Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
2776	2024-06-21 07:48	quickaccesspopup.exe 485f067cd96326fab6f9cd21e2f01ccb Generic Malware Malicious Library Malicious Packer UPX PE File PE64 DllRegisterServer dll OS Processor Check VirusTotal Malware				1.0		39	ZeroCERT

2777	2024-06-21 07:47	setup.exe 24f3dab39795bb7a131b8f685aad74bb Generic Malware Malicious Library Antivirus AntiDebug AntiVM PE File PE32 PowerShell VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger WMI Creates shortcut Creates executable files RWX flags setting unpack itself Windows utilities Disables Windows Security Checks Bios powershell.exe wrote suspicious process WriteConsoleW anti-virtualization Windows ComputerName Cryptographic key				11.6		35	ZeroCERT

2778	2024-06-21 07:45	crt.exe 1474c5d842d1a4ba2c592930a42c3a80 Emotet Gen1 Generic Malware Malicious Library UPX PE File PE32 MZP Format DLL PE64 OS Processor Check DllRegisterServer dll ftp VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder ComputerName crashed				3.2		18	ZeroCERT

2779	2024-06-21 07:43	Downaqzh.exe 6a7249eb490ea7acc9a151769b32ed70 Generic Malware UPX PE File PE32 VirusTotal Malware Checks debugger Windows	1 Keyword trend analysis	2	1	2.2		47	ZeroCERT

2780	2024-06-21 07:38	Downdd.exe f6be85b0254a308f77189fc96fa6f38e UPX PE File PE32 VirusTotal Malware Check memory Checks debugger				2.6	M	52	ZeroCERT

2781	2024-06-21 07:36	simon.exe b7e7f713ce1c717b6ae28904971e37e5 Themida Packer Malicious Packer PE File PE32 ZIP Format Browser Info Stealer Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency AutoRuns MachineGuid Check memory buffers extracted unpack itself Windows utilities Checks Bios Collect installed applications Detects VirtualBox Detects VMWare suspicious process AntiVM_Disk sandbox evasion WriteConsoleW VMware anti-virtualization IP Check VM Disk Size Check installed browsers check Tofsee Ransomware Windows Browser RisePro Email ComputerName Firmware DNS Software crashed	1 Keyword trend analysis	5	8 Info ET MALWARE RisePro TCP Heartbeat Packet ET MALWARE [ANY.RUN] RisePro TCP (Token) ET MALWARE [ANY.RUN] RisePro TCP (Activity) ET MALWARE [ANY.RUN] RisePro TCP (External IP) ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io) SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) ET MALWARE [ANY.RUN] RisePro TCP (Exfiltration) ET MALWARE RisePro CnC Activity (Inbound)	15.2		41	ZeroCERT

2782	2024-06-21 07:34	DownSysSoft.exe 50cc1aa14f6c5b5920b72e522297839f Generic Malware UPX PE File PE32 VirusTotal Malware Checks debugger ICMP traffic unpack itself Windows DNS	1 Keyword trend analysis	3	1	4.0		46	ZeroCERT

2783	2024-06-21 06:17	cache_vts_inaka_com.wag.walker... 56f12bbc7d60f29724929277725dfeb3 AntiDebug AntiVM Email Client Info Stealer suspicious privilege Checks debugger Creates shortcut unpack itself installed browsers check Browser Email ComputerName				3.4			guest

2784	2024-06-21 01:07	com.apple.ifdreader 980b2134101bf9c24c5bf001cd8b748b AntiDebug AntiVM Email Client Info Stealer suspicious privilege Checks debugger Creates shortcut unpack itself installed browsers check Browser Email ComputerName				3.4			guest

2785	2024-06-21 01:03	com_apple_MobileAsset_UAF_Siri... e08e4d148aadeabb7278fce7a60aa79d AntiDebug AntiVM MSOffice File Code Injection buffers extracted RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit DNS crashed				4.2			guest

2786	2024-06-21 00:47	CodeSignature copy.txt f9b2e038e6e2935047de6951552ecfbc ScreenShot AntiDebug AntiVM Check memory unpack itself				1.0			guest

2787	2024-06-21 00:43	O.txt 5065fb226090c29069f235a546e8468e Schwerer ScreenShot AntiDebug AntiVM OS Processor Check Check memory unpack itself				1.0			guest

2788	2024-06-21 00:38	IOUSB.pdf 2929d4841e1b01c2df23d6e98b0548b3 PDF							guest

2789	2024-06-20 19:45	FONTQRY32.exe aa20ff0db8694e6fd98760cb00c1bf74 Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware				0.6		1	guest

2790	2024-06-20 19:31	spphost.exe 358f68588c7f515fcf638b0141fea937 Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware				1.0		3	guest