Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
44836	2021-06-03 21:15	skMdx992wfqPuLs.exe 846d357601d74fe9facba3c0ed069d40 PWS .NET framework Anti_VM Malicious Library PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself Windows DNS Cryptographic key					3.2	M	26	ZeroCERT

44837	2021-06-03 21:13	S-2.exe 4270337062dd7bc8bf4ccbe505a15256 AsyncRAT backdoor Antivirus PE File .NET EXE PE32 VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process AppData folder Windows ComputerName Cryptographic key					6.0	M	47	ZeroCERT

44838	2021-06-03 21:13	ZIMAGE_0285429243JPG.exe 884dbc27a793e0e380b7582ea98c178f AsyncRAT backdoor PWS .NET framework Admin Tool (Sysinternals Devolutions inc) Anti_VM Malicious Library PE File .NET EXE PE32 VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key					8.0	M	15	ZeroCERT

44839	2021-06-03 21:11	ABCD.exe d534c439cb108c89522bb611a7aacbe4 AsyncRAT backdoor PE File .NET EXE PE32 VirusTotal Malware MachineGuid Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces DNS	1 Keyword trend analysis	4	2		4.4	M	27	ZeroCERT

44840	2021-06-03 21:11	vbc.exe c84c6557f6cf8e87f9830d5e7c6851f3 AsyncRAT backdoor PWS .NET framework Admin Tool (Sysinternals Devolutions inc) Anti_VM Malicious Library SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName DNS Cryptographic key crashed		1			9.6	M	11	ZeroCERT

44841	2021-06-03 21:09	moimoi.exe 46eadea2077db56d94566a6c8b7d45c2 AsyncRAT backdoor PWS .NET framework SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces Tofsee Windows ComputerName DNS crashed	1 Keyword trend analysis	3	1		11.4	M	20	ZeroCERT

44842	2021-06-03 21:08	nzex.exe 4a6d4f7e8a406a92228604f076758e22 AsyncRAT backdoor Malicious Packer SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger					11.8	M	21	ZeroCERT

44843	2021-06-03 21:06	palemo.exe de6401f377f747f03e084396fc6de3b7 Admin Tool (Sysinternals Devolutions inc) Anti_VM Malicious Library SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself					7.0	M	5	ZeroCERT

44844	2021-06-03 21:06	TT-3.exe 0b4ab2b8547d9d49b35788f9da74b439 AsyncRAT backdoor PE File PE64 VirusTotal Malware suspicious privilege MachineGuid Check memory Checks debugger unpack itself DNS					3.4	M	38	ZeroCERT

44845	2021-06-03 21:05	4bd5e746e9329d8ab41a7d4fbbc91d... a4c547cfac944ad816edf7c54bb58c5c AsyncRAT backdoor Generic Malware PE File PE32 DLL .NET DLL GIF Format VirusTotal Malware MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself AppData folder AntiVM_Disk sandbox evasion IP Check VM Disk Size Check	3 Keyword trend analysis	8	1	2	7.8	M	42	ZeroCERT

44846	2021-06-03 21:04	maxfrnd.exe 5d740968b96798cd1db3fdd4d9b18427 PWS .NET framework SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	4		14.6	M	44	ZeroCERT

44847	2021-06-03 21:02	winlog.exe 9e58383115c669f75786d2d1c0dc5b28 PE File OS Processor Check PE32 FormBook Malware download VirusTotal Malware PDB suspicious privilege Malicious Traffic unpack itself	2 Keyword trend analysis	4	1		3.2	M	30	ZeroCERT

44848	2021-06-03 21:01	INV.exe d55470b20a6777f44e16bc3f7e4ea4c0 AsyncRAT backdoor PWS .NET framework Antivirus AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key					10.2	M	7	ZeroCERT

44849	2021-06-03 21:00	S-1.exe 5d7c5fb038aec296d80604e0d45eab22 AsyncRAT backdoor Antivirus PE File .NET EXE PE32 VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process AppData folder Windows ComputerName Cryptographic key					6.0	M	46	ZeroCERT

44850	2021-06-03 20:59	M0031.cab 5118e261cc4726da37478866b25aef2e Escalate priviledges KeyLogger AntiDebug AntiVM suspicious privilege Check memory Checks debugger unpack itself DNS					2.2			ZeroCERT