Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
46996	2024-08-11 15:41	cntest.exe 738869c1fa8f0d3f5d5d9acbfe7dca9f Malicious Library Antivirus UPX Anti_VM PE File PE64 OS Processor Check VirusTotal Malware				0.8	M	29	ZeroCERT

46997	2024-08-11 15:43	66b38b9ae0da3_palnet_new.exe 12d8e993204cd8a39b7b5938ea6369eb RedLine stealer Malicious Library ScreenShot PWS AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Malware Microsoft PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed		1	6 Info ET DROP Spamhaus DROP Listed Traffic Inbound group 33 ET INFO Microsoft net.tcp Connection Initialization Activity ET MALWARE Redline Stealer TCP CnC Activity ET MALWARE [ANY.RUN] RedLine Stealer/MetaStealer Family Related (MC-NMF Authorization) ET MALWARE Redline Stealer TCP CnC - Id1Response ET MALWARE Redline Stealer/MetaStealer Family Activity (Response)	11.4	M	49	ZeroCERT

46998	2024-08-11 15:45	Opdxdyeul.exe cee58644e824d57927fe73be837b1418 .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself Windows ComputerName Cryptographic key crashed				4.4	M	54	ZeroCERT

46999	2024-08-11 15:47	loader.exe fd5cebded11fb4fe38b5a1fe259414ae Antivirus UPX Anti_VM PE File PE64 OS Processor Check VirusTotal Malware				1.2	M	22	ZeroCERT

47000	2024-08-11 15:50	66afa0d3934d8_ultfix.exe 0da8d6933fc99a15fc4ed8b20145f7b5 Generic Malware Malicious Library Malicious Packer UPX DllRegisterServer dll PE File PE64 OS Processor Check VirusTotal Malware crashed				1.2	M	31	ZeroCERT

47001	2024-08-11 15:52	equitosssmanagerupdatedMPDW-co... 9f8bd09eb1d9d2b5a02f4ab599233cc6 Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	1 Keyword trend analysis	2	1	7.6	M	5	ZeroCERT

47002	2024-08-12 08:50	KB5040434.exe bb5b9b9eb50152e5e10bc4983b6c527b Malicious Library Malicious Packer .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check suspicious privilege Check memory Checks debugger unpack itself Windows				3.0	M		ZeroCERT

47003	2024-08-12 08:50	crypted.exe 3c77c145dc83e4ae0f542bab6d5c9934 AntiDebug AntiVM PE File .NET EXE PE32 PDB Code Injection Check memory Checks debugger buffers extracted unpack itself DNS		1		7.4	M		ZeroCERT

47004	2024-08-12 08:52	g2m.dll 78027fc67b06851223c13def07c4abd3 Generic Malware Malicious Library Malicious Packer UPX PE File DLL PE32 OS Processor Check PDB Check memory crashed				0.6			ZeroCERT

47005	2024-08-12 08:53	microsoft.exe 27aa8ad8930fa0d076510cfb6573ce74 Malicious Library DNS AntiDebug AntiVM PE File .NET EXE PE32 Malware download Nanocore Cobalt Strike NetWireRC Malware Buffer PE AutoRuns suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process human activity check Windows RAT ComputerName DNS DDNS		2	5	11.8	M		ZeroCERT

47006	2024-08-12 08:56	380g.exe 81ee3f681043fedf57e73b20e6c3cf02 Malicious Library .NET framework(MSIL) ScreenShot AntiDebug AntiVM PE File .NET EXE PE32 suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows DNS Cryptographic key		1		10.0	M		ZeroCERT

47007	2024-08-12 08:56	ax1s.exe 02ea4eff413da0ee352a0f5e7ff4c3c2 Malicious Library Antivirus UPX Anti_VM PE File PE64 OS Processor Check					M		ZeroCERT

47008	2024-08-12 08:57	amad.exe 33f3040b744a6d2a175866104e3953e4 Malicious Library Socket Http API ScreenShot HTTP DNS Code injection Internet API PWS AntiDebug AntiVM PE File .NET EXE PE32 AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself AppData folder Windows Cryptographic key				9.8	M		ZeroCERT

47009	2024-08-12 08:57	AnneSalt.exe 0dac2872a9c5b21289499db3dcd2f18d Generic Malware Suspicious_Script_Bin Malicious Library UPX PE File PE32 OS Processor Check suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files Windows utilities suspicious process AppData folder sandbox evasion WriteConsoleW Windows ComputerName				5.2	M		ZeroCERT

47010	2024-08-12 08:59	setup.exe 2833c82055bf2d29c65cd9cf6684449a XMRig Miner ELF OS Processor Check					M		ZeroCERT