Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
44161	2024-05-07 14:21	158.exe f700c7059dcb4db8b23e7f31ec135b7b Generic Malware Malicious Library Downloader Malicious Packer UPX PE File PE32 OS Processor Check VirusTotal Malware Checks debugger DNS		1		3.6	M	56	ZeroCERT

44162	2024-05-07 14:23	PrintSpoofer.dll 575b5020c27e3d7b14fee8b2b33c44e3 Generic Malware Malicious Library UPX PE64 PE File DLL OS Processor Check VirusTotal Malware Check memory				1.6	M	46	ZeroCERT

44163	2024-05-07 14:23	libcefzs.exe 87363b124aa12e26c2de50d58aa680ba AntiDebug AntiVM PE File PE32 VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory RWX flags setting Windows utilities suspicious process AppData folder Windows DNS		2		7.4	M	52	ZeroCERT

44164	2024-05-07 14:25	winin-uninstaller.exe 7ac422a3fd4c8900f40bdc8034da6093 Malicious Packer PE64 PE File Browser Info Stealer VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Windows utilities suspicious process WriteConsoleW Windows Browser DNS		1		4.8	M	47	ZeroCERT

44165	2024-05-07 14:25	%E7%A6%81%E6%AD%A2%E6%B3%A8%E9... 514d90addf8cbbf88c05820785888b72 Generic Malware Malicious Library Malicious Packer UPX PE File PE32 VirusTotal Malware Check memory unpack itself				2.6	M	43	ZeroCERT

44166	2024-05-07 14:28	%E5%85%81%E8%AE%B8%E6%B3%A8%E9... b4b622dd6692b0185bd1a284ac849d2f Generic Malware Malicious Library Malicious Packer UPX PE File PE32 VirusTotal Malware unpack itself				2.2	M	36	ZeroCERT

44167	2024-05-07 14:28	%E7%A6%81%E6%AD%A2%E6%B3%A8%E9... 98bfb8f115e827d6bcc579fef55bee42 Generic Malware Malicious Library Malicious Packer UPX PE File PE32 VirusTotal Malware				2.0	M	42	ZeroCERT

44168	2024-05-07 14:30	libcef.exe d3466d3503d830cccdc003917572b7fc PE File PE32 VirusTotal Malware AutoRuns suspicious privilege RWX flags setting Windows DNS		2		4.4	M	51	ZeroCERT

44169	2024-05-07 14:31	140.exe 49e1b87b6313367ded55dc2a5acb07b9 Craxs RAT Malicious Library AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer Malware download FTP Client Info Stealer VirusTotal Malware Microsoft PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI unpack itself Collect installed applications Check virtual network interfaces installed browsers check Tofsee Stealer Windows Browser ComputerName Cryptographic key Software crashed	1 Keyword trend analysis	4	3	14.4	M	30	ZeroCERT

44170	2024-05-07 14:32	conus.exe 9285971685da864f0a33a8cfa94e3764 EnigmaProtector Malicious Packer PE File PE32 ZIP Format Browser Info Stealer Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency AutoRuns MachineGuid Check memory buffers extracted unpack itself Windows utilities Collect installed applications suspicious process AntiVM_Disk WriteConsoleW anti-virtualization IP Check VM Disk Size Check installed browsers check Tofsee Ransomware Windows Browser RisePro Email ComputerName DNS Software crashed	1 Keyword trend analysis	6	8 Info SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) ET MALWARE RisePro TCP Heartbeat Packet ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io) ET MALWARE [ANY.RUN] RisePro TCP (Token) ET MALWARE [ANY.RUN] RisePro TCP (External IP) ET MALWARE [ANY.RUN] RisePro TCP (Exfiltration) ET MALWARE RisePro CnC Activity (Inbound) ET MALWARE [ANY.RUN] RisePro TCP (Activity)	12.2	M	36	ZeroCERT

44171	2024-05-07 14:33	%E5%85%81%E8%AE%B8%E6%B3%A8%E9... 0325c8678db52836c4e9374bb9ada196 Generic Malware Malicious Library Malicious Packer UPX PE File PE32 VirusTotal Malware unpack itself				2.4	M	42	ZeroCERT

44172	2024-05-07 14:34	Server.exe dc32d6eb57bfa87f9f9cb4bf6953ec6e Generic Malware Malicious Library Malicious Packer UPX PE File PE32 OS Processor Check VirusTotal Malware PDB				1.0	M	26	ZeroCERT

44173	2024-05-07 14:35	PH32.exe 68f9b52895f4d34e74112f3129b3b00d Generic Malware Malicious Library Malicious Packer Antivirus UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Check memory Windows Remote Code Execution				5.0	M	31	ZeroCERT

44174	2024-05-07 14:37	PCHunter64_new.exe a2ed2bf5957b0b2d33eb778a443d15d0 Themida Packer Generic Malware Downloader PE64 PE File VirusTotal Malware Windows Remote Code Execution crashed				3.0	M	34	ZeroCERT

44175	2024-05-07 14:37	x3286.exe 12bbf8529577ef01a7066a9a97a0d81d Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware DNS		1		3.6	M	44	ZeroCERT