Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
3976	2024-05-17 09:49	artifact.exe 215c182097f03fd743386a0707f3fc4a Malicious Library PE64 PE File VirusTotal Malware ICMP traffic RWX flags setting DNS		1			4.0	M	62	ZeroCERT

3977	2024-05-17 09:46	nc.exe eaffd3bbf68d102d7d7c670c5d2290c5 NMap Malicious Library PE File PE32 VirusTotal Malware WriteConsoleW					1.6	M	45	ZeroCERT

3978	2024-05-17 09:44	artifact.exe 8b0524ac872303de2ed724eb7e001959 Malicious Library PE64 PE File VirusTotal Malware RWX flags setting DNS crashed		1			4.0	M	56	ZeroCERT

3979	2024-05-17 09:42	nc.exe 1965ab1b3664aac84acb1b6e262b1b7f NMap Malicious Library PE File PE32 VirusTotal Malware PDB WriteConsoleW					1.6	M	54	ZeroCERT

3980	2024-05-17 09:42	reverse.exe 33d2415134ed49ab055cec7a82892e1d Metasploit Meterpreter Generic Malware PE64 PE File VirusTotal Malware crashed					2.6	M	63	ZeroCERT

3981	2024-05-17 09:41	beautifulthingshappenedafterge... 21abbfbb6c333c66250c433aa7311c88 MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware Malicious Traffic exploit crash unpack itself Tofsee Exploit DNS crashed	2 Keyword trend analysis	3	2		4.2	M	37	ZeroCERT

3982	2024-05-17 09:40	client.exe 4a603ec4e3c5a21400eaabac7c6401c6 Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself					2.0	M	60	ZeroCERT

3983	2024-05-17 09:38	ms.exe da982330a3e82337e9a2aacae9b285ba PE64 PE File VirusTotal Malware unpack itself DNS crashed		1			4.0		46	ZeroCERT

3984	2024-05-17 09:33	morning_wednesdaydatingmango.v... 67173407dd0195a835a2e0b7f76df411 VirusTotal Malware VBScript wscript.exe payload download Tofsee Dropper	1 Keyword trend analysis	2	2	1	10.0	M	7	ZeroCERT

3985	2024-05-17 09:31	sheismybeautifulwifewholovedal... 9f23ffeb82b74830c9c26f7dd0a4f231 MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware Malicious Traffic RWX flags setting exploit crash Exploit DNS crashed	1 Keyword trend analysis	1	2		4.2	M	36	ZeroCERT

3986	2024-05-17 09:30	vpn-1002.exe 7282845f442c81d8f609bcc1a2853308 NSIS Generic Malware Downloader Malicious Library UPX Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM PE File PE32 PowerS VirusTotal Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote Check virtual network interfaces suspicious process AppData folder WriteConsoleW Tofsee Windows ComputerName DNS Cryptographic key crashed	7 Keyword trend analysis Info http://apps.identrust.com/roots/dstrootcax3.p7c http://240429000936002.mjt.kqri92.top/f/fvgbm0428902.txt https://d2iv78ooxaijb6.cloudfront.net/load/dl.php?id=444&c=1002 https://d2iv78ooxaijb6.cloudfront.net/load/th.php?a=2836&c=1002 https://cdn-edge-node.com/online_security_mkl.exe https://d2iv78ooxaijb6.cloudfront.net/load/dl.php?id=458&c=1002 https://d295fdouc92v9n.cloudfront.net/load/load.php?c=1002	12 Info cdn-edge-node.com(172.67.165.254) 240429000936002.mjt.kqri92.top(94.156.35.76) d2iv78ooxaijb6.cloudfront.net(54.192.60.53) adblock2024.shop(172.67.176.247) d295fdouc92v9n.cloudfront.net(13.225.129.184) 172.67.165.254 54.192.60.39 104.21.43.83 13.225.129.128 101.42.35.39 - mailcious 179.43.158.2 121.254.136.9	3		12.4	M	43	ZeroCERT

3987	2024-05-17 09:27	adminstor.exe 7578696faca7162febce592ab3c4c67b Generic Malware Malicious Library Malicious Packer UPX Anti_VM PE File PE32 OS Processor Check VirusTotal Malware PDB Check memory Checks debugger unpack itself AntiVM_Disk sandbox evasion VM Disk Size Check Browser DNS crashed		1			4.8	M	56	ZeroCERT

3988	2024-05-17 09:26	build.exe c616f203d102449f4f786727edd6db3f Gen1 Generic Malware Malicious Library UPX Antivirus Malicious Packer Anti_VM PE64 PE File DLL OS Processor Check ftp wget VirusTotal Malware Check memory Creates executable files unpack itself DNS		1			3.6	M	31	ZeroCERT

3989	2024-05-17 09:23	droidbase64controlfire.txt.exe 62407e6f5de13fbf40c50cfb124be93d AgentTesla Malicious Library Malicious Packer UPX PE File OS Memory Check .NET EXE PE32 OS Name Check OS Processor Check Browser Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces IP Check Browser Email ComputerName crashed	1 Keyword trend analysis	2	1		6.0		54	ZeroCERT

3990	2024-05-17 09:22	pappayaicecreamisreallysweeett... 82a5c6f30b627b675e1443db29fc4401 MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware Malicious Traffic buffers extracted RWX flags setting exploit crash Tofsee Exploit DNS crashed	2 Keyword trend analysis	3	2		4.6	M	32	ZeroCERT