Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
3331	2020-11-26 12:17	prowarzstepgodz.exe 4f9226e8dc633386bfb1e4a201b732ac Malware download Malware PDB suspicious privilege Malicious Traffic Creates executable files AppData folder malicious URLs WriteConsoleW installed browsers check Windows Browser DNS Downloader		3	8 Info ET INFO Executable Download from dotted-quad Host ET MALWARE Possible Malicious Macro DL EXE Feb 2016 ET MALWARE Possible Malicious Macro EXE DL AlphaNumL ET CURRENT_EVENTS Likely Evil EXE download from dotted Quad by MSXMLHTTP M1 ET CURRENT_EVENTS Terse alphanumeric executable downloader high likelihood of being hostile ET POLICY PE EXE or DLL Windows file download HTTP ET CURRENT_EVENTS Likely Evil EXE download from dotted Quad by MSXMLHTTP M2 ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response	8.0	M		ZeroCERT

3332	2020-11-26 13:26	run.exe 68cb8eb46036dee49f5dbcb95594660a VirusTotal Malware PDB Check memory Creates executable files AppData folder malicious URLs WriteConsoleW installed browsers check Browser		2		7.2	M	66	ZeroCERT

3333	2020-11-26 13:28	svchost.exe 69513930e28e86aae5bcfa92f6b89262 VirusTotal Malware malicious URLs WriteConsoleW DNS		1		4.4	M	65	ZeroCERT

3334	2020-11-26 13:31	Wzdgpx2.exe 9750537a76d3cd8981eb129559dd8e81 VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee ComputerName	1 Keyword trend analysis	2	1	3.2	M	19	ZeroCERT

3335	2020-11-26 13:33	tasksmgr.exe 7f9e3202a1d949772c5e5d003fc4e88c Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs WriteConsoleW IP Check Tofsee Ransomware Windows Browser Tor Email ComputerName Cryptographic key Software crashed keylogger	6 Keyword trend analysis	6	1	15.2	M	28	ZeroCERT

3336	2020-11-26 13:34	xpertpancake.exe a46cbc94fc5553868d63469acad6747f VirusTotal Malware Buffer PE Code Injection Malicious Traffic Check memory Checks debugger buffers extracted RWX flags setting unpack itself Disables Windows Security Check virtual network interfaces malicious URLs WriteConsoleW Tofsee Windows DNS Cryptographic key crashed	5 Keyword trend analysis	3	1	11.0	M	18	ZeroCERT

3337	2020-11-26 13:48	Xrghtofaye8.exe c16ce47c6812e6d526909c4cfd3ef1bc VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee ComputerName	1 Keyword trend analysis	2	1	3.6	M	32	ZeroCERT

3338	2020-11-27 07:52	https://hotfixssearch.com/Font... 8b7586880fcaf6b52aa4512506924121 Dridex Malware Code Injection exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	1 Keyword trend analysis	2	3	4.2		13	ZeroCERT

3339	2020-11-27 15:07	알씨.lnk e4239bed4f59ce6fa4245ecd10a658bb Creates shortcut unpack itself WriteConsoleW				1.4			ZeroCERT

3340	2020-11-27 17:18	Mvyfnzkjh1.exe 654cecf1ecadee45d5bfe723fadd3224 VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Windows ComputerName Cryptographic key crashed				3.0	M	21	ZeroCERT

3341	2020-11-27 17:20	sunny.exe e8b400e9bb145f6cf0082982cfaeee60 VirusTotal Malware unpack itself Remote Code Execution DNS crashed				2.8	M	38	ZeroCERT

3342	2020-11-27 17:21	9.exe a5b4252c8bac59ad90a543ec1f2e4a7a VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs				2.8	M	60	ZeroCERT

3343	2020-11-27 17:22	svchost.exe 5dedc928f9f5e3a4c59490e79bcf0773 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs				8.0	M	20	ZeroCERT

3344	2020-11-27 17:33	update.exe 75dd85a6d1389e53fb125ebd9d2711a3 VirusTotal Malware unpack itself malicious URLs DNS				3.4	M	45	ZeroCERT

3345	2020-11-27 17:34	sxs.exe a59e8de8a970190ecb658bb9d8238e63 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Ransomware Windows Tor ComputerName crashed				10.8	M	28	ZeroCERT

First
Previous
221
222
223
224
225
226
227
228
229
230
Next
Last
Total : 48,320cnts

Submissions

4f9226e8dc633386bfb1e4a201b732ac

68cb8eb46036dee49f5dbcb95594660a

69513930e28e86aae5bcfa92f6b89262

9750537a76d3cd8981eb129559dd8e81

7f9e3202a1d949772c5e5d003fc4e88c

a46cbc94fc5553868d63469acad6747f

c16ce47c6812e6d526909c4cfd3ef1bc

8b7586880fcaf6b52aa4512506924121

e4239bed4f59ce6fa4245ecd10a658bb

654cecf1ecadee45d5bfe723fadd3224

e8b400e9bb145f6cf0082982cfaeee60

a5b4252c8bac59ad90a543ec1f2e4a7a

5dedc928f9f5e3a4c59490e79bcf0773

75dd85a6d1389e53fb125ebd9d2711a3

a59e8de8a970190ecb658bb9d8238e63

View

Insert

Alert