Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
47146	2024-08-14 13:39	vsrfdgej.exe 319cc8df286242b248cf442ca4e87220 Generic Malware Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware RWX flags setting WriteConsoleW				2.2		42	ZeroCERT

47147	2024-08-14 13:45	THEMETAL NEW ORDERFOB$ _KORIA ... 94f77c1f6d2b95da3b403c39faa91b78 Generic Malware Malicious Library .NET framework(MSIL) Antivirus UPX AntiDebug AntiVM PE File .NET EXE PE32 DLL FormBook Browser Info Stealer Malware download VirusTotal Malware powershell PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote suspicious process AppData folder WriteConsoleW Windows Browser ComputerName Cryptographic key		16 Info www.dressroza.com(85.159.66.93) www.by2526.com(156.237.204.118) www.dulichngaaz.info(104.21.59.93) www.doonsideproperty.com(15.197.148.33) www.qkotc.xyz(15.197.148.33) www.354388.pet(18.166.41.103) www.ontoweightloss.health(3.33.130.190) www.coffeemakers.online(35.213.130.57) 18.166.41.103 15.197.148.33 - mailcious 85.159.66.93 - mailcious 156.237.204.118 172.67.222.36 - mailcious 3.33.130.190 - phishing 35.213.130.57 45.33.6.223	2	12.4		56	ZeroCERT

47148	2024-08-14 17:24	Cewl.docx b759e1004fc15c30e1b8c7085a2ef9f6 Word 2007 file format(docx) ZIP Format Vulnerability unpack itself				1.8			ZeroCERT

47149	2024-08-14 17:38	Bagsmkkens.chm 846776743575f6b122b38a71dacfc6fc AntiDebug AntiVM Code Injection Check memory crashed				1.4			ZeroCERT

47150	2024-08-14 17:47	plug3.ps1 b5e93a1c787af8f0bcc1ff99d12722d9 Generic Malware Antivirus VirusTotal Malware Check memory unpack itself WriteConsoleW Windows Cryptographic key	3 Keyword trend analysis			1.4		8	ZeroCERT

47151	2024-08-14 17:50	uno.ps1 88266488dc0941b4ec3aeb8fcce4af6c Generic Malware Antivirus VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName Cryptographic key	1 Keyword trend analysis			6.6	M	2	ZeroCERT

47152	2024-08-15 10:36	e93629b052f25d25c92a4afaee51cc... 7a799f4f9aa63745a75b901a392aff29 Generic Malware Malicious Library UPX PE File DLL PE64 DllRegisterServer dll OS Processor Check VirusTotal Malware AutoRuns PDB Check memory Checks debugger unpack itself Ransomware Windows				2.8		8	ZeroCERT

47153	2024-08-15 11:07	b.exe 01359d7d9ec82b16108b98fb6d31ce22 Generic Malware PE File PE64 VirusTotal Malware Check memory				1.6		35	ZeroCERT

47154	2024-08-15 11:08	handicap.exe 4cafe5036e12fac84ea750ab09a42a6d Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware PDB				0.6		7	ZeroCERT

47155	2024-08-15 11:10	s.exe b43e3cb0e1e8afd9f97b7471d3a15652 Generic Malware PE File PE64 VirusTotal Malware RWX flags setting unpack itself ComputerName DNS		1		3.0		20	ZeroCERT

47156	2024-08-15 11:12	a.exe 299d90fd59dde6708ece0a0f73423997 Generic Malware PE File PE64 DllRegisterServer dll VirusTotal Malware RWX flags setting unpack itself ComputerName DNS		1		3.0		23	ZeroCERT

47157	2024-08-15 11:16	msedge.exe c2ec3c7d003e11d0db8aab918df1e47a Generic Malware UPX Antivirus PE File .NET EXE PE32 OS Processor Check Lnk Format GIF Format VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities suspicious process AntiVM_Disk WriteConsoleW VM Disk Size Check Windows ComputerName Cryptographic key keylogger				7.8		35	ZeroCERT

47158	2024-08-15 15:20	b e744a3ee4380bc4eadddeca8fa99e593 Malicious Library PE File DLL PE64 DllRegisterServer dll Malware download Cobalt Strike Cobalt VirusTotal Malware Checks debugger RWX flags setting unpack itself ComputerName DNS	1 Keyword trend analysis	1	2	3.8		50	ZeroCERT

47159	2024-08-15 15:22	u.png ca9e2fafc81b855386aaf7a50906efa4 Generic Malware Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware PDB				0.6		6	ZeroCERT

47160	2024-08-15 15:24	calc.url 7cd9148cc27a55dc66a2d223f161bb54 AntiDebug AntiVM URL Format Code Injection exploit crash unpack itself Windows utilities Windows Exploit DNS crashed				3.4			ZeroCERT