Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Hosts	IDS	Score	Zero	VT	Player
49051	2024-10-20 10:05	%E9%AD%94%E6%99%B6.exe 2be4dfa98a31a874af90e0835951420d Emotet Generic Malware Malicious Library Malicious Packer ASPack UPX Anti_VM PE File DllRegisterServer dll PE32 OS Processor Check unpack itself sandbox evasion Remote Code Execution DNS	1		3.2	M		ZeroCERT

49052	2024-10-20 10:07	Get-FileHash.ps1 ee20d99a70ec226f66bcd0b26a0c6caf Generic Malware Antivirus unpack itself			0.4	M		ZeroCERT

49053	2024-10-20 10:09	svchost.exe 7460f67864161928611617d5c28dada8 Generic Malware Malicious Library Malicious Packer Antivirus UPX Anti_VM PE File PE64 PDB DNS	1		1.8	M		ZeroCERT

49054	2024-10-20 10:12	fgdump.exe 0762764e298c369a2de8afaec5174ed9 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check PE64 DLL PDB Creates executable files AppData folder WriteConsoleW Remote Code Execution			3.4	M		ZeroCERT

49055	2024-10-20 10:14	system64.exe 91b01b252f1497b77fb58b020088c0ef Generic Malware Malicious Library ASPack Antivirus UPX PE File DllRegisterServer dll PE32 OS Processor Check AutoRuns sandbox evasion Windows Browser Remote Code Execution keylogger			2.8	M		ZeroCERT

49056	2024-10-20 10:16	pyi6.exe 3b16dafca7fe3c55d66d70cab5adfb3e Malicious Library UPX AntiDebug AntiVM PE File PE64 suspicious privilege Code Injection WMI Creates executable files Windows utilities suspicious process WriteConsoleW Windows ComputerName			5.0	M		ZeroCERT

49057	2024-10-20 10:18	taskhostsw.exe 33aba7d0ecc92933ddc567c1d6d77018 Generic Malware Malicious Library UPX Antivirus PE File PE32 powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key			4.2	M		ZeroCERT

49058	2024-10-20 10:20	mimi.ps1 ab386df4cc481edfb162c6bee296d486 Vidar Hide_EXE OS Processor Check Creates executable files RWX flags setting exploit crash Exploit crashed			1.8	M		ZeroCERT

49059	2024-10-20 10:22	shell_reverse_msf_encoded_embe... c23d75e9e8ad5d82bdec4103543caec5 Malicious Library UPX PE File PE32 VirusTotal Malware unpack itself			3.0	M	60	ZeroCERT

49060	2024-10-20 11:19	rkduajedzcrd.exe 0838e4e90814a48e6122f4b0a2b2fc5f Generic Malware PE File PE64 VirusTotal Malware DNS	1	1	1.4		59	guest

49061	2024-10-21 13:38	XM.exe 0940599cefe789664d6a032a27b25b73 RedLine stealer Malicious Library PE File PE64 VirusTotal Malware suspicious privilege MachineGuid Check memory Checks debugger buffers extracted unpack itself Windows ComputerName Cryptographic key			3.8	M	57	ZeroCERT

49062	2024-10-21 13:38	ZZZ.exe 3663c34a774b45d65edb817e27dcbdae Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Email Client Info Stealer Malware WMI Checks Bios anti-virtualization Email ComputerName	2		4.0	M	62	ZeroCERT

49063	2024-10-21 13:40	prem1.exe dc860de2a24ea3e15c496582af59b9cb Client SW User Data Stealer ftp Client info stealer Generic Malware Malicious Library UPX Http API PWS AntiDebug AntiVM PE File PE32 OS Processor Check VirusTotal Malware Code Injection Check memory buffers extracted unpack itself ComputerName crashed			7.4	M	60	ZeroCERT

49064	2024-10-21 13:41	newfile.exe a896758e32aa41a6b5f04ed92fe87a6c Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger unpack itself Windows			3.0	M	56	ZeroCERT

49065	2024-10-21 13:42	AI2.exe 34684ddf1deaabe5f923e130dba8c260 Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself			2.0	M	53	ZeroCERT