Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
48391	2024-09-25 11:20	sdfbtw.exe 56bbebff4b50d8298e46f3312915694c PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName				2.8	M	38	ZeroCERT

48392	2024-09-25 11:23	noode.exe e6a7b5e1de9991e8428a076208fa0789 Emotet Gen1 Generic Malware Malicious Library UPX PE File PE32 MZP Format DLL OS Processor Check PE64 VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder ComputerName crashed				3.2	M	15	ZeroCERT

48393	2024-09-25 16:49	sdsdhggf.exe 4ecc9d9d93e5ff84765dacbb1e54a4c9 PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName				2.6	M	26	ZeroCERT

48394	2024-09-25 16:49	vdcsb.exe 80729909b073a23f2caf883d9b9dce98 PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName				2.6	M	27	ZeroCERT

48395	2024-09-25 16:52	vdcsnjdh15.exe 03c94d73127dfe7f3d12aa591612cad6 PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName				2.6	M	25	ZeroCERT

48396	2024-09-25 16:56	vkga15.ps1 a3e3377666ed1b3cdbe3633fdde44fb3 Generic Malware Antivirus Malware download Malware powershell Malicious Traffic Check memory buffers extracted unpack itself Check virtual network interfaces WriteConsoleW Windows ComputerName DNS Cryptographic key Downloader	1 Keyword trend analysis	1	6 Info ET DROP Spamhaus DROP Listed Traffic Inbound group 23 ET INFO Executable Download from dotted-quad Host ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile ET POLICY PE EXE or DLL Windows file download HTTP ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response	5.4			ZeroCERT

48397	2024-09-25 17:05	tgh6.exe 55f813b368e7834f7f692c2e2451b8f2 Generic Malware PE File .NET EXE PE32 Check memory Checks debugger unpack itself ComputerName				1.0			ZeroCERT

48398	2024-09-25 21:15	MediaCreationTool_Win11_23H2.e... 25c9285c00ef7d41b28823a053a9a372 Gen1 Generic Malware Malicious Library Malicious Packer UPX PE File CAB PE32 PDB Remote Code Execution				1.0			guest

48399	2024-09-25 21:49	https://pt.org.br/ f79fef5b6cd04dcd2f7b014ea656d77e VirusTotal Malware				0.4			guest

48400	2024-09-25 21:58	https://pt.org.br/ f79fef5b6cd04dcd2f7b014ea656d77e AntiDebug AntiVM PNG Format MSOffice File JPEG Format VirusTotal Malware Code Injection ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		2	2	5.0			guest

48401	2024-09-26 09:50	Solara.exe 51c009abf871216f8d9e40cdd785ce6c Emotet Gen1 Malicious Library UPX AntiDebug AntiVM PE File PE64 CAB VirusTotal Malware AutoRuns PDB MachineGuid Code Injection Check memory Checks debugger Creates executable files unpack itself suspicious process Windows ComputerName Remote Code Execution				5.6		13	ZeroCERT

48402	2024-09-26 09:50	greatthingshappinesshapeeineda... 1e292fc5072c6d4f7da9d33a3f0f3d82 MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware Malicious Traffic RWX flags setting exploit crash Tofsee Exploit DNS crashed	1 Keyword trend analysis	3	1	4.6	M	38	ZeroCERT

48403	2024-09-26 09:52	66f45ebb9b495_crypted_20240925... 080774ce0bc02b8865c66675bed06d0f PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName				2.6	M	29	ZeroCERT

48404	2024-09-26 09:53	QoiYtBvCClNsmj.exe d87e27c8f998eea52032064b0b923a08 Formbook Generic Malware Malicious Library .NET framework(MSIL) Antivirus AntiDebug AntiVM PE File .NET EXE PE32 FormBook Malware download Malware PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key	2 Keyword trend analysis	5	1	9.2			ZeroCERT

48405	2024-09-26 09:57	moi.exe 1fb9195294d3f2c24f8a938c6c8d1628 Gen1 Generic Malware Malicious Library UPX Anti_VM PE File PE64 OS Processor Check DLL ZIP Format VirusTotal Malware Check memory Creates executable files				1.6	M	34	ZeroCERT