Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
40621	2021-10-14 18:04	ETH2.exe 13003cbfb6d2adfeea85952f8172c4f7 Generic Malware PE64 PE File VirusTotal Malware					1.2	M	25	r0d

40622	2021-10-14 18:03	SI-3023-9552783693PDF.jar 2922d30afb359edde8083596e20601dc NPKI Generic Malware Malicious Packer Malicious Library UPX MSOffice File OS Processor Check PE File PE32 DLL VirusTotal Malware AutoRuns Check memory buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder suspicious TLD WriteConsoleW Windows Java ComputerName DNS DDNS crashed	1 Keyword trend analysis	10	4		8.2	M	7	ZeroCERT

40623	2021-10-14 18:00	sold.exe 3c46298cfa8e5755a58aee34d65cb397 CoinMiner PE64 PE File VirusTotal Malware					1.6	M	41	r0d

40624	2021-10-14 17:35	farm_money.exe fa409741e16094bb8bc373d7b46742cd Malicious Packer Malicious Library PE64 PE File VirusTotal Malware Code Injection buffers extracted					3.2	M	40	ZeroCERT

40625	2021-10-14 17:33	SI-3023-9552783693PDF.jar 2922d30afb359edde8083596e20601dc Generic Malware Malicious Packer Malicious Library MSOffice File OS Processor Check VirusTotal Malware unpack itself Windows utilities Windows					1.8	M	7	ZeroCERT

40626	2021-10-14 17:31	monero-bandit.exe 342ef4f2941187bdc7f66d148be0ff75 Malicious Packer Malicious Library PE64 PE File VirusTotal Cryptocurrency Miner Malware Cryptocurrency Code Injection buffers extracted		2	1		3.2	M	41	ZeroCERT

40627	2021-10-14 17:31	acqlzg075.jpg 6a33a581f8b986ae4cf315c4c912d864 Gen2 Gen1 Malicious Library PE File PE32 DLL VirusTotal Malware PDB Check memory unpack itself crashed					1.4	M	9	ZeroCERT

40628	2021-10-14 17:29	mine.exe f64ccb9df2b5df5287485f13c727d9dd Malicious Packer VMProtect UPX Malicious Library PE64 PE File VirusTotal Malware Code Injection Malicious Traffic buffers extracted unpack itself Tofsee RCE	1 Keyword trend analysis	5	1	1	5.0	M	35	ZeroCERT

40629	2021-10-14 17:29	VolumeConverter.dll fc505773010d767cc1eca83c1df804cb Generic Malware PE File PE32 .NET DLL DLL VirusTotal Malware PDB					1.0	M	19	ZeroCERT

40630	2021-10-14 17:28	sold.exe 3c46298cfa8e5755a58aee34d65cb397 PE64 PE File VirusTotal Malware					1.6	M	41	ZeroCERT

40631	2021-10-14 17:26	c78zdj.jpg cb1c5d7a7e086e67e22abe9eab31db50 Gen2 Gen1 Malicious Library PE File PE32 DLL VirusTotal Malware PDB unpack itself DNS crashed		1			1.8	M	8	ZeroCERT

40632	2021-10-14 17:26	ali.exe bf15384858eb653a37c2c52cfb8093bf NPKI PE64 PE File VirusTotal Malware DNS		1			1.8	M	29	ZeroCERT

40633	2021-10-14 17:24	bloodteam.exe 2d82ec0905de054cd685e6a52e2d9442 Generic Malware Antivirus Malicious Packer Malicious Library PE File PE32 PE64 VirusTotal Cryptocurrency Miner Malware Cryptocurrency powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote Check virtual network interfaces suspicious process suspicious TLD WriteConsoleW Windows ComputerName Cryptographic key Downloader		4	3		10.0	M	38	ZeroCERT

40634	2021-10-14 17:24	6666.exe f8d8071d3e0163eb4e816ec49d0b2e8e NPKI Malicious Library PE64 PE File VirusTotal Cryptocurrency Miner Malware Cryptocurrency		2	1		1.6	M	31	ZeroCERT

40635	2021-10-14 17:23	vbc.exe 8777020a37b6797241a489a707b9784b Generic Malware UPX PE File PE32 VirusTotal Malware Check memory RWX flags setting unpack itself RCE crashed					2.2	M	22	ZeroCERT