Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	Zero	VT	Player
3091	2025-01-23 18:30	setup.msi ad69b77049fc6fc49ea4766e4501575b Generic Malware Malicious Library MSOffice File CAB OS Processor Check VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName	5 Keyword trend analysis	2	2.4		15	ZeroCERT

3092	2025-01-23 18:28	Network.exe 31c81fac210cd56abb84ff55ede0365b Antivirus UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check Windows ComputerName Cryptographic key			4.0		54	ZeroCERT

3093	2025-01-23 18:26	access.exe 5af2fd64b9622284e9cb099ac08ae120 Malicious Packer UPX PE File PE32 VirusTotal Malware unpack itself DNS		1	3.6	M	63	ZeroCERT

3094	2025-01-23 18:25	SharpHound.exe 7d9213f8f3cba4035542eff1c9dbb341 Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware PDB Check memory Checks debugger unpack itself Windows Cryptographic key			2.8	M	57	ZeroCERT

3095	2025-01-23 06:51	jmkykhjksefkyt.exe 65cc23e7237f3cff2d206a269793772e Generic Malware Malicious Library Antivirus UPX PE File PE32 OS Processor Check Malware Malicious Traffic ComputerName DNS	1 Keyword trend analysis	5	3.0	M		ZeroCERT

3096	2025-01-23 06:47	nova_kaycee.vbs c5f0c9c14fae991ee6e6f25f8e7f0221 Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM PowerShell powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut Creates executable files unpack itself suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key		1	6.8	M		ZeroCERT

3097	2025-01-23 06:46	kj00kw.ps1 19a08bc2cb81ffc243a4223121b4d6e9 Hide_EXE Generic Malware Antivirus UPX Malicious Library Malicious Packer Confuser .NET AntiDebug AntiVM PE File DLL PE32 .NET EXE Browser Info Stealer powershell Buffer PE Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself powershell.exe wrote AppData folder suspicious TLD Browser	15 Keyword trend analysis Info http://www.extremedoge.xyz/d8se/ http://www.zltbd.top/1jgm/?aA0oVn=eA6uj9mZZG+EKrxfswGApmXXI0p+YTaKp1gfdi5CfcM9nM+TLjgWcwBtgp/C7prMYA+QDtZzzV+0rSF+jYnqwmuWlATC+zwKaxmM0eLSIF6KRgpcsoHnjR3ICsIoHcDcBWoJljM=&uL=tuSegr-aLeIW http://www.zltbd.top/1jgm/ http://www.67051.app/fm7p/?aA0oVn=fBQGVIP7Njvsfk9lzF9d/sdBluYbkOx9Vaqk3JyU25ETPeViuHfhuXRn/X/4l2r/aQcZiXoH+567skXIk+or+vUABT2ejmBxdOFfcD/7nc+/oBxuIH8atQY3BV9A3FWHsGb3cNA=&uL=tuSegr-aLeIW http://www.meacci.xyz/y3n2/ http://www.extremedoge.xyz/d8se/?aA0oVn=/SD9pFSzQOAsk6zpabHlU9ZXbxrg7PaZHGb2u7tA7jL8hbNivAh91rSnEmMQYiYm2xILAWc0h2mK7v85Eb/bwmkVaqdX4hXL1d46fAKlPCExW94pmuU+QNfSRFIryEKBz6Xtm2w=&uL=tuSegr-aLeIW http://www.brothersharetender.xyz/zt2z/ http://www.lifesentials.life/ai0p/ http://www.lifesentials.life/ai0p/?aA0oVn=rZDqlkYBI8Udwc1PV/KnJHNh6pEuqfnUU600R0dEHTi0g/oFcrH0VJPjKDcJsyDPkPK5dg/BoZxLcakNPxKVIp3FFoqOpAqATHzFTc0Kc7j4Hnf42/UwaR/YWWdcV10GGOZvjs0=&uL=tuSegr-aLeIW http://www.brothersharetender.xyz/zt2z/?aA0oVn=xrZBxJYgw8cIQMiqB7MJTIt56Y5x1dzsCIunmK+cvRjjBmIrzA2dl/VKD+8Ko7RwD9ZNT3MsvQ9uHPPRt337yY3SQq9c32vIKb0ZpnkUqAHAqojpvsCz/3SLl1qRQBpJo+hmuPc=&uL=tuSegr-aLeIW http://www.sqlite.org/2022/sqlite-dll-win32-x86-3390000.zip http://www.laohuc58.net/q2xw/ http://www.meacci.xyz/y3n2/?aA0oVn=YYHifcw1ROMF/3Rui21dObVXjAOycMKtO4hXXvbRKVUVh0h/q4DM+aO7A1nlqnFctBzVAwzHmVAfM2sicI7T38fTXgwlOQpRgAWrULTRJOennTkobfA6A/gEUPp6kRoqEnphUcA=&uL=tuSegr-aLeIW http://www.laohuc58.net/q2xw/?aA0oVn=86ngbchxwzH4i1X9t/6T/+Oi07pXbTio6Z6AqXex3cvjnWz71i6BmEbigKLnuir3o4hn/RqteaiiAlb4smyLAUyEx3YzLzbbvgN8NMjBPYT9mAET1dTBOG3s6KAnBEBCryIsKCY=&uL=tuSegr-aLeIW http://www.67051.app/fm7p/	13 Info www.extremedoge.xyz(76.223.54.146) www.lifesentials.life(63.250.47.57) www.laohuc58.net(202.79.161.151) www.meacci.xyz(76.223.54.146) www.zltbd.top(198.2.236.221) www.brothersharetender.xyz(76.223.54.146) www.67051.app(103.215.78.119) 198.2.236.221 27.124.4.246 13.248.169.48 - mailcious 45.33.6.223 63.250.47.57 103.215.78.119	12.6	M		ZeroCERT

3098	2025-01-23 06:45	cred64.dll f9f252d2dfbb062e1ccc62df48e3b531 Generic Malware Malicious Library UPX Antivirus PE File DLL PE64 OS Processor Check Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency PDB suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software	1 Keyword trend analysis	1	8.6	M		ZeroCERT

3099	2025-01-23 06:40	Client.exe fb322bb8839082f017faf5d77b1789c1 Malicious Library Malicious Packer Antivirus .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check Check memory Checks debugger unpack itself			0.8	M		ZeroCERT

3100	2025-01-23 06:38	cred.dll 2b999ca7b09926583ba69257303e073a Generic Malware Malicious Library UPX Antivirus PE File DLL PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software	1 Keyword trend analysis	1	8.2	M		ZeroCERT

3101	2025-01-23 06:36	iviewers.dll 07fd51e1e8368144ea403137a671b84c Generic Malware Downloader Malicious Library UPX Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM PE File DLL DllRegisterS Malware powershell PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key	2 Keyword trend analysis	1	9.2	M		ZeroCERT

3102	2025-01-23 06:35	pomoykaXL.exe 756219b350b87a85f693dccbbf4cbc1e Generic Malware Malicious Library Malicious Packer VMProtect UPX Anti_VM AntiDebug AntiVM PE File PE64 OS Processor Check PE32 Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities AppData folder Windows ComputerName			6.6	M		ZeroCERT

3103	2025-01-23 06:34	mod.exe e9987ac76debe4d7c754f30cec95d618 Generic Malware UPX PE File .NET EXE PE32 suspicious privilege Check memory Checks debugger Creates executable files unpack itself Windows utilities AppData folder WriteConsoleW Creates autorun.inf human activity check Windows crashed			6.2	M		ZeroCERT

3104	2025-01-23 06:31	clip64.dll f923f79b330a5bf8ccb3fda0f71a9c48 Amadey Generic Malware Malicious Library UPX PE File DLL PE32 OS Processor Check Malware Malicious Traffic Checks debugger unpack itself DNS	1 Keyword trend analysis	1	2.4	M		ZeroCERT

3105	2025-01-23 06:28	Application_MSSQLSERVER_15457.... 877a1f9ba7dcd670a960c474de6e033a Downloader Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM MSOffice File Code Injection RWX flags setting unpack itself Windows utilities malicious URLs Windows DNS			4.2			guest