Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
47176	2024-08-16 15:18	unrootkit.dll 56561903fd1e9dedfe029dd8c9172e7c Generic Malware Malicious Library Malicious Packer UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware PDB suspicious privilege Check memory Checks debugger unpack itself				2.6	M	62	ZeroCERT

47177	2024-08-16 17:43	451e981f-3416-484b-ba8a-6c3aae... 6d29f4896892c91765c447a1987a4dbf Malicious Library Malicious Packer Antivirus .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself				1.8		39	ZeroCERT

47178	2024-08-16 17:45	atualizarchavebb.exe 5f6ed924c5fc2a7134acad39c491e426 Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware PDB				0.6		2	ZeroCERT

47179	2024-08-16 17:49	adob024.msi acd50da7436621368061abc2ca6193fe Generic Malware Malicious Library MSOffice File CAB OS Processor Check VirusTotal Malware Buffer PE suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself AntiVM_Disk VM Disk Size Check Tofsee ComputerName	15 Keyword trend analysis Info http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfIs%2BLjDtGwQ09XEB1Yeq%2BtX%2BBgQQU7NfjgtJxXWRM3y5nP%2Be6mK4cD08CEAitQLJg0pxMn17Nqb2Trtk%3D http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSRXerF0eFeSWRripTgTkcJWMm7iQQUaDfg67Y7%2BF8Rhvv%2BYXsIiGX0TkICEAooSZl45YmN9AojjrilUug%3D http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBT3xL4LQLXDRDM9P665TW442vrsUQQUReuir%2FSSy4IxLVGLp6chnfNtyA8CEA6bGI750C3n79tQ4ghAGFo%3D http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt http://cacerts.digicert.com/DigiCertTrustedRootG4.crt https://ps.pndsn.com/v2/subscribe/sub-c-a02ceca8-a958-11e5-bd8c-0619f8945a4f/e00905d4-3856-4887-b595-3b102a6ce467/0?heartbeat=93&pnsdk=NET45CSharp6.13.0.0&requestid=12d00e9f-90ed-42bb-bf8d-a4cee20a83cf&tr=34&tt=17237979717852454&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/time/0?pnsdk=NET45CSharp6.13.0.0&requestid=c09e2018-679b-4892-8c17-f018f66a11f3&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/v2/presence/sub_key/sub-c-a02ceca8-a958-11e5-bd8c-0619f8945a4f/channel/e00905d4-3856-4887-b595-3b102a6ce467/heartbeat?heartbeat=93&pnsdk=NET45CSharp6.13.0.0&requestid=33bc53d7-b38d-4443-ad4c-fe2237b03869&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.atera.com/agentpackagesnet45/AgentPackageAgentInformation/37.2/AgentPackageAgentInformation.zip?kHE0a4AHPD06sRT5dNr8CEGDDgxItT/NNHjAvqtYD5Vp1AfUa8Y22WAUqOM87JT+ https://ps.pndsn.com/time/0?pnsdk=NET45CSharp6.13.0.0&requestid=cd541e6a-2ba4-4a03-a00f-094ee2b67135&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/time/0?pnsdk=NET45CSharp6.13.0.0&requestid=37d5c33a-d873-4f9c-819f-519051737e0b&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/v2/subscribe/sub-c-a02ceca8-a958-11e5-bd8c-0619f8945a4f/e00905d4-3856-4887-b595-3b102a6ce467/0?heartbeat=93&pnsdk=NET45CSharp6.13.0.0&requestid=08d6e7fe-8c3c-4170-8f89-6cd210f9977f&tr=34&tt=17237979729901531&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/time/0?pnsdk=NET45CSharp6.13.0.0&requestid=00bd05cc-8d26-4ad1-94e7-04ee06e4e9a6&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/time/0?pnsdk=NET45CSharp6.13.0.0&requestid=af4be7e1-0f14-4a01-ac83-33610d59f4ff&uuid=e00905d4-3856-4887-b595-3b102a6ce467 https://ps.pndsn.com/v2/subscribe/sub-c-a02ceca8-a958-11e5-bd8c-0619f8945a4f/e00905d4-3856-4887-b595-3b102a6ce467/0?heartbeat=93&pnsdk=NET45CSharp6.13.0.0&requestid=b153a57e-499b-4ae8-b169-598fc179a7f6&tt=0&uuid=e00905d4-3856-4887-b595-3b102a6ce467	9	1	4.8	M	12	ZeroCERT

47180	2024-08-16 17:56	ChaveBB-2024.exe d46fbf03a71245869dc5c89805e6d8f1 Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware PDB				0.6		8	ZeroCERT

47181	2024-08-16 18:04	new_image.jpg.exe 9bc67a353e3056bac82436a1667350ab Malicious Library UPX PE File DLL PE32 .NET DLL OS Processor Check VirusTotal Malware PDB				1.4		43	ZeroCERT

47182	2024-08-16 18:16	bb.jpg.ps1 35cc87966b1583d624d2be67dd4c5a91 Client SW User Data Stealer browser info stealer Generic Malware Google Chrome User Data Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection BitCoin Internet API Browser Info Stealer VirusTotal Malware powershell MachineGuid Code Injection Check memory Checks debugger Creates shortcut Creates executable files exploit crash unpack itself powershell.exe wrote malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check installed browsers check Windows Exploit Browser ComputerName Cryptographic key crashed	1 Keyword trend analysis			9.2		8	ZeroCERT

47183	2024-08-16 18:20	Doc1.docm 0fee354732496cdbdb4e78ecb218a81a VBA_macro Word 2007 file format(docx) ZIP Format VirusTotal Malware unpack itself Windows utilities Windows	1 Keyword trend analysis	2		4.8		17	ZeroCERT

47184	2024-08-16 18:31	베트남 녹지원 상춘재 행사 견적서.hwp .exe... 35d60d2723c649c97b414b3cb701df1c Generic Malware Malicious Library UPX HWP PE File DllRegisterServer dll MSOffice File PE32 OS Processor Check DLL VirusTotal Malware PDB Check memory Checks debugger Creates executable files unpack itself suspicious process AppData folder WriteConsoleW Remote Code Execution crashed	2 Keyword trend analysis	3	1	5.6		55	ZeroCERT

47185	2024-08-16 18:35	님.jse 7756b4230adfa16e18142d1dbe6934af ROMCOM RAT Generic Malware Suspicious_Script_Bin Hide_EXE Antivirus Malicious Library UPX Anti_VM PDF AntiDebug AntiVM PowerShell ZIP Format PE File DLL PE64 DllRegisterServer dll OS Processor Check MSOffice File VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Check virtual network interfaces suspicious process AntiVM_Disk WriteConsoleW VM Disk Size Check Tofsee Ransomware Interception Windows Exploit ComputerName DNS Cryptographic key crashed	1 Keyword trend analysis	7	1	15.8		26	ZeroCERT

47186	2024-08-16 18:36	Mnemonic.chm 55c6005f361c9011182379ba8f7a875f Gen1 Generic Malware Downloader Malicious Library UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM CHM Format PE Fil VirusTotal Malware AutoRuns MachineGuid Code Injection Check memory Creates executable files RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Windows				5.4		42	ZeroCERT

47187	2024-08-17 10:20	contorax.exe 771b8e84ba4f0215298d9dadfe5a10bf Malicious Library PE File .NET EXE PE32 VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself Windows Cryptographic key				2.0		21	ZeroCERT

47188	2024-08-17 22:12	1111.exe 7b0e99178f36fa152761f55ccd20a2ab Malicious Library PE File PE64 Check memory Checks debugger unpack itself Windows Cryptographic key crashed				1.2	M		ZeroCERT

47189	2024-08-17 22:14	seethesmoothofbutterburnwhicht... d18067e4be9ca434241869dda26c5f8f MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware Malicious Traffic exploit crash unpack itself Tofsee Exploit DNS crashed	1 Keyword trend analysis	3	1	4.6	M	39	ZeroCERT

47190	2024-08-17 22:14	zzzz1.exe a5c740eb48fafb9b25d06c22b6f4a7e9 Gen1 Generic Malware Malicious Library UPX Antivirus Malicious Packer Anti_VM PE File PE64 DLL OS Processor Check ftp wget VirusTotal Malware Check memory Creates executable files unpack itself				3.2	M	41	ZeroCERT