Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	VT	Player
4381	2024-12-04 16:20	COMSurrogate.exe 77334f046a50530cdc6e585e59165264 Malicious Library Malicious Packer PE64 PE File VirusTotal Malware AutoRuns PDB Check memory Checks debugger unpack itself Check virtual network interfaces Windows DNS		1		3.8	26	ZeroCERT

4382	2024-12-04 16:19	GI59vO6.exe 71c8588c96e879748f4c320c9b4aeec2 Emotet Generic Malware Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware PDB unpack itself				1.6	11	ZeroCERT

4383	2024-12-04 16:18	0DMNix3.exe dd587632bd83be28e06fc74be5ffe634 NSIS Malicious Library UPX PE32 PE File DLL VirusTotal Malware Malicious Traffic Check memory Creates executable files ICMP traffic Windows utilities AppData folder Windows DNS	2 Keyword trend analysis	1	6 Info ET INFO Executable Download from dotted-quad Host ET HUNTING Suspicious BITS EXE DL From Dotted Quad ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging) ET INFO Dotted Quad Host RAR Request	5.0	16	ZeroCERT

4384	2024-12-04 16:15	MINING.exe 7ddd875175b500bf815e765802146b42 Malicious Library Malicious Packer Antivirus UPX PE64 PE File OS Processor Check VirusTotal Malware crashed				1.6	47	ZeroCERT

4385	2024-12-04 16:15	sound.exe 770bc9a9a9ff4284b8cb6e333478d25c Malicious Library Malicious Packer UPX PE64 PE File VirusTotal Malware				0.8	15	ZeroCERT

4386	2024-12-03 17:37	tcp_windows_amd64.exe b6a2ea59733071ec77515c7841983c94 PE64 PE File VirusTotal Malware unpack itself DNS		1		2.2	43	ZeroCERT

4387	2024-12-03 17:35	defender.exe 879e3d30cc1392370ab0eec1601aa1b6 Gen1 Generic Malware Malicious Library UPX Antivirus PE32 PE File PE64 VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself WriteConsoleW				3.0	54	ZeroCERT

4388	2024-12-03 17:35	SPONTANEOUS_SPIDER.exe 5a6228215d30d5d008e700a6132dea88 Malicious Packer UPX PE64 PE File VirusTotal Malware Checks debugger Check virtual network interfaces DNS		44 Info baakb3398228.0x0000b.fashionspeedy.com() UFMFu9KeJsnbPK9QUqbN.0x0000b.fashionspeedy.com() 1ca6c74g3424u4f9zpwe5jvm.0x0000b.fashionspeedy.com() Mw61sBBWX7TeDqWjCvA8RN4DrJqgtb6vL7oNZXn4sqejjMDxDZ5dS2cJ2wVXGzK.P7XWA1rGkBJTHTJo6g8nv4A6Hco7P7TEaiai5Bmursxaf1S62ygkS74jtraxqSN.cBBRXQNu8594oHjCedZ7oepyuLN48VPmAHD2T3YMWnHCLJYeE1xsrMhF4YHgkYn.1JpExJ7xRzRvvHQ3wsGyxSdpE1g2jniUB.0x0000b.fashionspeedy.com() UAnSLYYCzCZq3kNvgxak.0x0000b.fashionspeedy.com() 1cdget4b3426btqe4awu8bzd.0x0000b.fashionspeedy.com() UBhBVE9E8EK8nUbyrHTe.0x0000b.fashionspeedy.com() baakbk3awrfa.0x0000b.fashionspeedy.com() 1cztb843342gpqqbdurvztcw.0x0000b.fashionspeedy.com() 1cztb843342acyc3gy5v1thk.0x0000b.fashionspeedy.com() 1cztb843342ff22ux0n22pre.0x0000b.fashionspeedy.com() baakbbdap498.0x0000b.fashionspeedy.com() 1cdget4b342dg617d1058pj6.0x0000b.fashionspeedy.com() 1cdget4f342a3dumca4heq7k.0x0000b.fashionspeedy.com() 1cztb847342adtxx4kg3ua18.0x0000b.fashionspeedy.com() 1cdget4f3426wu409ebdm1q4.0x0000b.fashionspeedy.com() 4CnUqeQADKVUwiJ6ggzx4GiH6JRu4niMQQ2rwPVaJmDMB68EzJw4UU3QfebhbZN.CyssJnus9aKGWELXUBwyX4XakFfgq9xireWw6Z9k2rtmuwo3xSL9KyxxMW5QpRq.ERrxnj2nBGLFkwKP9Ab8xWugqJGckVQraRyUeC6Anbesegg9pM.0x0000b.fashionspeedy.com() Mw63aigDdCM1XpDxMZ8jibqaLkP6xiWK6CKNApwj13124S1YajPqT5sfsUY3itD.6JpWc3gShWCoPHwdcRqR3KKwMhQ3y9LXbSNtfkiuAu6sLq5QVVmz864PkyRuvNu.hfVXLJcgcjE4MicNorMRZuGHniwo7e7LUGQX2YaWgYafAXvyVT55aF4LYQ6pkcj.WrC1ML9WmAeVxd93D1QPKx13FG4c2aA6s.0x0000b.fashionspeedy.com() 1cztb847342gjxmq6cy2ra9h.0x0000b.fashionspeedy.com() UBhBVE9E8hKNPzpMeKpq.0x0000b.fashionspeedy.com() 1ca6c74g342d6teddmjrvygv.0x0000b.fashionspeedy.com() UBhBVE9E8KPCRdpeE7Yc.0x0000b.fashionspeedy.com() 1cdget4f342ezzdh7vh10cmr.0x0000b.fashionspeedy.com() UFMFu9Kek37KJk5D8ogF.0x0000b.fashionspeedy.com() UAnSLYYCzoBVAyaA3gry.0x0000b.fashionspeedy.com() UAnSLYYCzXhLQQoZ59AF.0x0000b.fashionspeedy.com() 1cdget4b3423rbdn3ygafkkk.0x0000b.fashionspeedy.com() 1cztb847342c8wr033hgnp6w.0x0000b.fashionspeedy.com() UAnSLYYCzLvUkG813X4z.0x0000b.fashionspeedy.com() 1cdget4b34228fky81gknp77.0x0000b.fashionspeedy.com() 1ca6c74g3425pjfv519pmdwf.0x0000b.fashionspeedy.com() 1ca6c74c34274t2vd0thbxce.0x0000b.fashionspeedy.com() 1ca6c74c342121bu0cfecz4z.0x0000b.fashionspeedy.com() Mw64mv1pSxDzXP7u9DvXyL44zFvn8HfHDM1XfoZRM7j4AzuqJpwY2JXtjV1ew6w.yfDdN4ga22rqmHDX8qer9Mui9MyTs4MV4GwNM8ExBENyxVNqatDVNsDUTA6vCQs.Eh6jGBjZsya5KJCQVzgULvArmBmKr3xs1NLZpEJeAjsasjhwZGsGnyYZRhR9hbn.dwvyAZ2Zr1839CwUaYVttqVQDMDsMnDeJ.0x0000b.fashionspeedy.com() UFMFu9Kek5cwpM49v6dh.0x0000b.fashionspeedy.com() 1ca6c74g34222zmbj8mxr40t.0x0000b.fashionspeedy.com() 1cdget4f3421kgutmtgyp11r.0x0000b.fashionspeedy.com() 1cztb8433422ej6y5wncm2zn.0x0000b.fashionspeedy.com() UFMFu9Kek1ukr6wf3HGf.0x0000b.fashionspeedy.com() 4CnUW5AQFyn2vtqZ9KDYv5tw2FVFEwZLPKsyFYMgTYSmP2Yixw9SCYP47zuUTiD.ipJhBFwKLY8UcizHwm4saZW4uTogWsNqDZC1B35b9FrjSd4xkupZeJ1y2WqeqJo.xMnNTgH7i5uxFxxGYUB1nLLmpdrCd4TLFnYN5R19oxsRHNgSMn.0x0000b.fashionspeedy.com() 1ca6c74c34231b20mbfp2bz3.0x0000b.fashionspeedy.com() 1cztb8473426r3x4eq7webda.0x0000b.fashionspeedy.com() UBhBVE9E8LyBiGJTA5YQ.0x0000b.fashionspeedy.com() 1ca6c74c342f8rcyn2d45fr6.0x0000b.fashionspeedy.com()		3.2	49	ZeroCERT

4389	2024-12-03 17:33	netshhelper.dll c9e26f4593b6cd64d5105c77943c19a8 Generic Malware Malicious Library UPX DLL PE64 PE File OS Processor Check VirusTotal Malware PDB Windows utilities Windows				2.2	46	ZeroCERT

4390	2024-12-03 17:26	c1f8dbca8eb55e0620e1ede491939c... 73dd67e9a28ad65aee8cc7124e72c29d Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware RCE DNS		1	1	4.0	44	guest

4391	2024-12-03 13:33	SQL2019-SSEI-Dev.exe 54c804c8f597748ce17394624b6c08a4 North Korea Emotet Gen1 Generic Malware PhysicalDrive NSIS NMap Malicious Library .NET framework(MSIL) UPX Malicious Packer Downloader Antivirus Admin Tool (Sysinternals etc ...) ASPack Anti_VM Javascript_Blob PE32 PE File MZP Format OS Processor Check Dl Browser Info Stealer VirusTotal Malware AutoRuns Check memory Checks debugger Creates executable files unpack itself AppData folder installed browsers check Windows Browser Cryptographic key				4.8	68	ZeroCERT

4392	2024-12-03 13:25	asegurar.vbs 3c6884c4d3a5348a023bf408ea0f9715 Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	3 Keyword trend analysis	4	1	9.2	4	ZeroCERT

4393	2024-12-03 13:23	segura.vbs b626245664336638ee18a5b8016cd00f Generic Malware Antivirus Hide_URL PowerShell Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	2 Keyword trend analysis	4	1	9.4		ZeroCERT

4394	2024-12-03 13:23	09.jpg 59f7e20a2beeca185aca6f42c98c9a92						ZeroCERT

4395	2024-12-03 13:20	rhnew.exe 046233032238246b01f8db289d51c34c Themida UPX Anti_VM PE32 PE File VirusTotal Malware Checks debugger unpack itself Checks Bios Detects VMWare VMware anti-virtualization Windows crashed				5.8	32	ZeroCERT