Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	VT	Player
4276	2024-12-18 16:31	BootstrapperV1.23_1.exe 02c70d9d6696950c198db93b7f6a835e Malicious Library .NET framework(MSIL) UPX PE File PE64 .NET EXE VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Windows utilities Check virtual network interfaces suspicious process Tofsee Windows ComputerName crashed		4	1	4.4	59	guest

4277	2024-12-18 16:25	BootstrapperV1.23_1.exe 02c70d9d6696950c198db93b7f6a835e Malicious Library .NET framework(MSIL) UPX PE File PE64 .NET EXE VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Windows utilities Check virtual network interfaces suspicious process Tofsee Windows ComputerName crashed		4	1	4.4	59	guest

4278	2024-12-18 16:19	av.exe c5ca67c0bbc8b248cea971121e96e93d Gen1 Generic Malware PhysicalDrive Downloader Malicious Library WinRAR UPX Malicious Packer Antivirus Confuser .NET Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API pe VirusTotal Malware powershell PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger WMI Creates shortcut Creates executable files unpack itself Windows utilities Disables Windows Security powershell.exe wrote suspicious process AppData folder WriteConsoleW installed browsers check Windows Browser ComputerName RCE Cryptographic key crashed				15.6	40	ZeroCERT

4279	2024-12-18 16:17	AwT7h8g.exe bc6009246c4e40f200cad9bdaaf25f50 Generic Malware UPX Malicious Library Malicious Packer PE File .NET EXE PE32 DLL OS Processor Check VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder				3.0	36	ZeroCERT

4280	2024-12-18 16:15	bo.js 32254df5cf8de301c1266c7905a7b5a4 Generic Malware Antivirus PowerShell VirusTotal Malware suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed				5.8	20	ZeroCERT

4281	2024-12-17 18:05	Schimbare date bancare FM ROMA... a753499ff9fc03d1b0b465b447b9b73a PDF				0.4		guest

4282	2024-12-16 19:27	ScreenUpdateSync.exe 27754b6abff5ca6e4b1183526f9517dd Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware unpack itself				1.2	28	ZeroCERT

4283	2024-12-16 19:27	3EUEYgl.exe 3b8b3018e3283830627249d26305419d Themida UPX PE32 PE File VirusTotal Malware Telegram Malicious Traffic Checks debugger unpack itself Checks Bios Detects VMWare VMware anti-virtualization Tofsee Windows ComputerName DNS crashed	2 Keyword trend analysis	5	3	9.6	58	ZeroCERT

4284	2024-12-16 19:23	EM.ps1 8e04834cd195af2ca19b161e0216403a Hide_EXE Generic Malware Antivirus Malicious Library Malicious Packer Confuser .NET PWS AntiDebug AntiVM BitCoin .NET EXE PE32 PE File VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself powershell.exe wrote AppData folder ComputerName				11.4	9	ZeroCERT

4285	2024-12-16 19:21	1.exe 686cfcc7c0d54f5def526ed022af6edc Generic Malware Malicious Library Malicious Packer UPX Socket Http API Escalate priviledges HTTP Code injection Internet API AntiDebug AntiVM PE64 PE File OS Processor Check VirusTotal Malware Buffer PE Code Injection buffers extracted RWX flags setting unpack itself malicious URLs ComputerName DNS		1	1	8.2	53	ZeroCERT

4286	2024-12-16 19:20	l4.exe d68f79c459ee4ae03b76fa5ba151a41f Gen1 Generic Malware Malicious Library UPX Anti_VM PE64 PE File OS Processor Check DLL wget ftp VirusTotal Malware Check memory Creates executable files unpack itself				3.4	52	ZeroCERT

4287	2024-12-16 19:17	tmp.exe 459976dc3440b9fe9614d2e7c246af02 Metasploit Generic Malware PE64 PE File VirusTotal Malware DNS crashed		1		3.6	62	ZeroCERT

4288	2024-12-16 19:16	888.exe b6e5859c20c608bf7e23a9b4f8b3b699 Generic Malware Malicious Library Malicious Packer UPX Antivirus PE32 PE File OS Processor Check ZIP Format PNG Format Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency powershell Telegram suspicious privilege Malicious Traffic Check memory Checks debugger WMI Creates shortcut unpack itself suspicious process Tofsee Windows Browser Email ComputerName DNS Cryptographic key crashed	1 Keyword trend analysis	4	5	7.8	49	ZeroCERT

4289	2024-12-16 19:12	Dynpvoy.exe c5ad2e085a9ff5c605572215c40029e1 Malicious Library .NET EXE PE32 PE File VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself Windows ComputerName Cryptographic key crashed				4.4	46	ZeroCERT

4290	2024-12-16 19:10	dl 958d453dd48cb48acce0181b7202e567 Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware unpack itself				1.4	35	ZeroCERT