Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
31021	2022-05-19 09:15	ctf.exe 4183fdaae3671eb00cb32af2da6b8f39 UPX Malicious Library PE32 OS Processor Check PE File VirusTotal Malware PDB unpack itself RCE				2.4		33	ZeroCERT

31022	2022-05-19 09:13	rvjgwbak.exe dafb5f90a7e12d6c989b1b3be1ff45f4 PWS[m] RAT SMTP KeyLogger AntiDebug AntiVM PE32 .NET EXE PE File VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger unpack itself WriteConsoleW Windows ComputerName DNS crashed	1 Keyword trend analysis	1		5.4		18	ZeroCERT

31023	2022-05-19 09:12	vbc.exe bf3dcbe1e67a122f82c0d0adb6ab2c3e UPX Malicious Library PE32 OS Processor Check PE File VirusTotal Malware PDB unpack itself RCE				2.6		49	ZeroCERT

31024	2022-05-19 09:12	17 May 22.doc 7e088808e52ed5eb88d4a2df6c77cfae Anti_VM RTF File doc Malware download Malware buffers extracted Creates executable files unpack itself Tofsee DNS	6 Keyword trend analysis Info http://wrd.intector.xyz/39Hq4vSPhlIwdUP9/naLhrcrCK8cV8ImfpVoBuVyTuJtTeK265pZtFkXVSdY9Vlvn.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 http://wrd.intector.xyz/39Hq4vSPhlIwdUP9/naLhrcrCK8cV8ImfpVoBuVyTuJtTeK265pZtFkXVSdY9Vlvn.rtf http://wrd.intector.xyz/39Hq4vSPhlIwdUP9/naLhrcrCK8cV8Imf.php http://wrd.intector.xyz/39Hq4vSPhlIwdUP9/ http://wrd.intector.xyz/39Hq4vSPhlIwdUP9 http://wrd.intector.xyz/39Hq4vSPhlIwdUP9/naLhrcrCK8cV8ImfpVoBuVyTuJtTeK265pZtFkXVSdY9Vlvn	2	4	3.4			ZeroCERT

31025	2022-05-19 09:10	vbc.exe 3b4f60e40cbc73233846824c36fcbb11 HermeticWiper Generic Malware UPX Malicious Library PE32 PE File VirusTotal Malware PDB unpack itself RCE				2.2		35	ZeroCERT

31026	2022-05-19 09:10	vbc.exe e9b42d67c6b1d5f175f74e8cb2f6940e UPX Malicious Library PE32 OS Processor Check PE File VirusTotal Malware PDB unpack itself RCE				2.6		46	ZeroCERT

31027	2022-05-19 09:09	search_hyperfs_310.exe 66b4a425391db82580547af1551f8658 UPX Malicious Library AntiDebug AntiVM PE32 OS Processor Check PE File DLL PDB Code Injection Checks debugger Creates executable files unpack itself AppData folder RCE				3.4			ZeroCERT

31028	2022-05-19 09:08	himv0rbBofmABf3ewN 7193012cca53b96f116c07fb4a89e6fe UPX Malicious Library OS Processor Check DLL PE File PE64 AutoRuns Checks debugger unpack itself Auto service suspicious process AntiVM_Disk VM Disk Size Check Windows ComputerName crashed				4.6			ZeroCERT

31029	2022-05-19 09:05	11.html f48bef3d2bb1295b3a5d1060815ff3e6 Generic Malware Antivirus AntiDebug AntiVM MSOffice File Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut exploit crash unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows Exploit ComputerName DNS Cryptographic key crashed		4	2	11.6	M		ZeroCERT

31030	2022-05-19 07:58	8lS 6e630e0910d70e9038b5f0533073ff8c UPX Malicious Library OS Processor Check DLL PE File PE64 AutoRuns Checks debugger unpack itself Auto service suspicious process AntiVM_Disk VM Disk Size Check Windows ComputerName crashed				4.6			ZeroCERT

31031	2022-05-19 07:52	okwRWz1C c68aa1c1486cc46a87a0ba123622b861 UPX Malicious Library OS Processor Check DLL PE File PE64 AutoRuns Checks debugger unpack itself Auto service suspicious process sandbox evasion Windows ComputerName crashed				4.6			ZeroCERT

31032	2022-05-19 07:47	b4QyfcO 8ce5bbf21b9168bb3b3b3837e59bf581 UPX Malicious Library OS Processor Check DLL PE File PE64 VirusTotal Malware AutoRuns Checks debugger unpack itself Auto service suspicious process sandbox evasion Windows ComputerName crashed				5.2		10	ZeroCERT

31033	2022-05-19 07:44	12DtB7kP6Ur8X77 2feed60fc4a7069b6733d95239b300e2 UPX Malicious Library OS Processor Check DLL PE File PE64 Dridex TrickBot Malware AutoRuns Checks debugger unpack itself Auto service suspicious process sandbox evasion Kovter Windows ComputerName DNS crashed keylogger		2	2	5.8			ZeroCERT

31034	2022-05-19 07:40	0AEt8wRWroIJmVgEjZC 03549b52a58de0a96adde709c8434eb2 UPX Malicious Library OS Processor Check DLL PE File PE64 AutoRuns Checks debugger unpack itself Auto service suspicious process sandbox evasion Windows ComputerName DNS crashed		1		5.2			ZeroCERT

31035	2022-05-19 07:36	jkNQKmmMlZi 0780b69f46cb3f3e54ec89941f83967b UPX Malicious Library OS Processor Check DLL PE File PE64 AutoRuns Checks debugger unpack itself Auto service suspicious process sandbox evasion Windows ComputerName crashed				4.6			ZeroCERT