Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
45391	2024-06-17 09:35	tmp.vbs 18f1dab32aa01d481ca68568f7278f89 crashed					0.2			ZeroCERT

45392	2024-06-17 10:24	Taskbar.exe 0ee9a0317342d545c2bfd9e3fbd627f9 Malicious Library PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Windows Remote Code Execution Cryptographic key		2	1		3.8	M	50	ZeroCERT

45393	2024-06-17 10:25	b.exe ccd45a73d555f6a89b06924e150680e5 Malicious Packer Malicious Library UPX PE File PE32 VirusTotal Malware Windows utilities suspicious process Windows	4 Keyword trend analysis	2	2		2.6		39	ZeroCERT

45394	2024-06-17 10:26	s.exe b7b18619464ce06f97278c1cf029a5cb Browser Login Data Stealer Generic Malware Malicious Packer Malicious Library UPX PE File PE32 Browser Info Stealer VirusTotal Malware Browser DNS		1	1		2.0	M	8	ZeroCERT

45395	2024-06-17 11:20	adobe.exe 5fb6f9de46e67ad7d07418a02417aa92 UPX PE64 PE File VirusTotal Malware unpack itself					2.0		26	r0d

45396	2024-06-17 13:26	chrome.exe d35043ced01af08d55ec8cb5d3f368c7 Generic Malware Malicious Library UPX DllRegisterServer dll PE File PE32 OS Processor Check VirusTotal Malware Remote Code Execution					2.0		47	ZeroCERT

45397	2024-06-17 13:27	dhl.exe fc58e29974c49a329c30188f5a468e08 Generic Malware Malicious Library PE File PE32 VirusTotal Malware AutoRuns Creates executable files unpack itself suspicious process Windows	1 Keyword trend analysis	2	1		5.2	M	64	ZeroCERT

45398	2024-06-17 13:29	setup222.exe 8677376c509f0c66d1f02c6b66d7ef90 Downloader PE64 PE File VirusTotal Malware MachineGuid Creates executable files Check virtual network interfaces Tofsee	1 Keyword trend analysis	3	1		3.0	M	32	ZeroCERT

45399	2024-06-17 13:31	b2c2c1.exe f8ec725e4b969f157fd70166e73a56a3 Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware unpack itself Remote Code Execution DNS		1			3.2	M	51	ZeroCERT

45400	2024-06-17 13:31	monster.exe 3f4f5c57433724a32b7498b6a2c91bf0 Gen1 Generic Malware Malicious Library UPX Malicious Packer Antivirus Anti_VM PE64 PE File DLL OS Processor Check wget ftp VirusTotal Malware Check memory Creates executable files unpack itself					2.8	M	20	ZeroCERT

45401	2024-06-17 13:33	NewLatest.exe 07101cac5b9477ba636cd8ca7b9932cb Amadey Generic Malware Malicious Packer Malicious Library UPX PE File PE32 OS Processor Check PE64 Malware download Amadey VirusTotal Cryptocurrency Miner Malware AutoRuns Malicious Traffic Creates executable files unpack itself AppData folder Windows DNS CoinMiner	3 Keyword trend analysis	8	8 Info ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 ET INFO Executable Download from dotted-quad Host ET INFO Packed Executable Download ET POLICY PE EXE or DLL Windows file download HTTP ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response SSLBL: Malicious JA3 SSL-Client Fingerprint detected (CoinMiner) ET POLICY Observed DNS Query to Coin Mining Domain (nanopool .org)	3	6.4	M	38	ZeroCERT

45402	2024-06-17 13:34	servoces64.exe 540c3c9ae1b97353b49de9a216532d72 Anti_VM PE64 PE File VirusTotal Malware					1.4	M	21	ZeroCERT

45403	2024-06-17 13:35	setup.exe 59f7c6aba00ac82304ed8e658ff4768f Generic Malware Malicious Library Antivirus AntiDebug AntiVM PE File PE32 PowerShell VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger WMI Creates shortcut Creates executable files RWX flags setting unpack itself Windows utilities Disables Windows Security Checks Bios suspicious process WriteConsoleW anti-virtualization Windows ComputerName DNS Cryptographic key		1			12.2	M	53	ZeroCERT

45404	2024-06-17 13:37	NewKindR.exe fdafb92fc1868e533daa18f318d8e322 Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware unpack itself DNS		1			3.0	M	50	ZeroCERT

45405	2024-06-17 13:43	__x64___setup___x32__.zip 7e05adc41fe0d6484c3cc75893991a2f ZIP Format Malware Malicious Traffic Tofsee	2 Keyword trend analysis	3	1		1.2			ZeroCERT