Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	VT	Player
4396	2024-12-03 13:19	tR7DLnB.exe 03757138d540ad9e87a345bf3b63aebf Malicious Library .NET framework(MSIL) .NET EXE PE32 PE File Browser Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces Ransomware Windows Browser ComputerName DNS Cryptographic key crashed		1		8.2	49	ZeroCERT

4397	2024-12-03 13:19	tpZOod0.exe 98da391545b4823ca67e6cc3a927dae9 Generic Malware Malicious Library Malicious Packer UPX .NET EXE PE32 PE File DLL OS Processor Check VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder crashed				3.6	45	ZeroCERT

4398	2024-12-02 10:35	Salt-Mobile_2057328_204519.pdf... 4453589030017a300ebe7890c732adbb Generic Malware Antivirus Escalate priviledges DNS AntiDebug AntiVM Lnk Format GIF Format VirusTotal Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger WMI Creates shortcut unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed				5.8	14	ZeroCERT

4399	2024-12-02 10:35	Pramienrechnung66892837.pdf.ln... 9cec84f2d227bad89abcbd06e4a69d53 Generic Malware Antivirus Escalate priviledges DNS AntiDebug AntiVM Lnk Format GIF Format VirusTotal Malware powershell suspicious privilege MachineGuid Code Injection Check memory Checks debugger WMI Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed				6.4	16	ZeroCERT

4400	2024-12-02 10:35	Pramienrechnung645137.pdf.lnk b0fa7ac267e48a7d8884cb57f49ea9c7 Generic Malware Antivirus Escalate priviledges DNS AntiDebug AntiVM Lnk Format GIF Format VirusTotal Malware powershell suspicious privilege MachineGuid Code Injection Check memory Checks debugger WMI Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed				6.4	14	ZeroCERT

4401	2024-12-02 10:30	N67fLgN.exe 974049047492d0a73f8c23e25de924ef Generic Malware Malicious Library Malicious Packer UPX DllRegisterServer dll PE32 PE File OS Processor Check VirusTotal Malware				1.0	22	ZeroCERT

4402	2024-12-02 10:28	SearchUII.exe 24453759fc86d34383bd0ffc722bbfb5 Malicious Library .NET EXE PE32 PE File Malware download njRAT VirusTotal Malware PDB suspicious privilege Check memory Checks debugger unpack itself Windows utilities WriteConsoleW Windows ComputerName DNS DDNS crashed		2	2	4.4	52	ZeroCERT

4403	2024-12-02 10:28	kfhtksfesek.exe 690dbcea5902a1613cee46995be65909 PE32 PE File VirusTotal Malware unpack itself ComputerName crashed				2.8	43	ZeroCERT

4404	2024-12-02 10:02	purchaseorder.exe ff74865e59dc57289613c8acf736e684 Malicious Library UPX ftp PE32 PE File MZP Format URL Format VirusTotal Malware AutoRuns Code Injection Checks debugger buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Tofsee Interception Windows Advertising Google	2 Keyword trend analysis	4	1	11.4	52	ZeroCERT

4405	2024-12-02 10:01	build.exe 3edc68fb9a58f24cbd529d7c0a536757 RedLine stealer RedlineStealer Malicious Library .NET framework(MSIL) UPX .NET EXE PE32 PE File OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself Windows DNS Cryptographic key		1		3.8	59	ZeroCERT

4406	2024-12-02 10:01	peace.url 99d3fba3f01a7fdbafc87060ce7e722f URL Format VirusTotal Malware				0.6	11	ZeroCERT

4407	2024-12-01 12:47	saw.bat 887c821a48cf66c815f6dce4f8cb61d5 Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM MSOffice File VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut exploit crash unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW installed browsers check Tofsee Windows Exploit Browser ComputerName Cloudflare DNS Cryptographic key crashed	2 Keyword trend analysis	2	2	7.4	12	ZeroCERT

4408	2024-12-01 12:44	EbjU3lW.exe a151487b27e539f2f2ec79ac50940872 Themida UPX Anti_VM PE32 PE File VirusTotal Malware Checks debugger unpack itself Checks Bios Detects VMWare VMware anti-virtualization Windows crashed				5.2	37	ZeroCERT

4409	2024-12-01 12:42	kim.url f2950c78d47e36fd25aeb7178ec87968 URL Format ZIP Format VirusTotal Malware Windows utilities Windows	5 Keyword trend analysis Info http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/277_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/279_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/280_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/281_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/message.zip			1.8	7	ZeroCERT

4410	2024-12-01 12:42	241.exe 33e6878b6cf00f7ce64f05fa7c12e09f Generic Malware Malicious Library UPX ScreenShot AntiDebug AntiVM PE32 PE File OS Processor Check Code Injection Checks debugger buffers extracted unpack itself				6.0		ZeroCERT