Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Hosts	IDS	Score	VT	Player
49306	2024-11-07 13:59	100pcs.exe a59df37a0613dbed779ef63b1a36ecbf Client SW User Data Stealer Backdoor RemcosRAT browser info stealer Generic Malware Google Chrome User Data Downloader Malicious Library .NET framework(MSIL) Antivirus Create Service Socket ScreenShot Escalate priviledges PWS Sniff Audio DNS Internet API VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key	1		11.6	54	ZeroCERT

49307	2024-11-07 14:02	newtpp.exe 06560b5e92d704395bc6dae58bc7e794 Generic Malware Malicious Library Downloader Admin Tool (Sysinternals etc ...) Malicious Packer UPX Antivirus PE File PE32 PowerShell Malware download VirusTotal Malware powershell AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities Disables Windows Security powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key	17	1	13.0	59	ZeroCERT

49308	2024-11-07 14:02	r.exe 930c41bc0c20865af61a95bcf0c3b289 Generic Malware Malicious Library Downloader Admin Tool (Sysinternals etc ...) Malicious Packer UPX Antivirus PE File PE32 PowerShell Malware download VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities Disables Windows Security suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key	16	1	12.4	55	ZeroCERT

49309	2024-11-07 14:02	1.exe a775d164cf76e9a9ff6afd7eb1e3ab2e Generic Malware Malicious Library Downloader Admin Tool (Sysinternals etc ...) Malicious Packer Antivirus UPX PE File PE32 PowerShell Malware download VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities Disables Windows Security suspicious process WriteConsoleW Windows Update ComputerName DNS Cryptographic key	16	1	13.0	59	ZeroCERT

49310	2024-11-07 21:45	1.hta 682f821b4daa22d6629825e83159e98f Formbook VirusTotal Malware crashed			1.0	28	guest

49311	2024-11-08 11:00	segura.vbs b95c6fca5e452cf9aa31fa3d3751806f	1				ZeroCERT

49312	2024-11-08 11:00	file.exe 8e487fecb6d9126067b432788db011de Generic Malware Malicious Packer .NET framework(MSIL) UPX Malicious Library PE File .NET EXE PE32 OS Processor Check PE64 VirusTotal Malware PDB suspicious privilege Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces DNS	2	1	4.2	50	ZeroCERT

49313	2024-11-08 11:02	Diamotrix.exe 5c02b91b95c1dec88be1c6dd65674363 Generic Malware Downloader Malicious Library Http API Escalate priviledges HTTP Code injection Internet API persistence AntiDebug AntiVM PE File PE64 VirusTotal Malware AutoRuns Code Injection Checks debugger buffers extracted suspicious process Windows crashed			8.0	34	ZeroCERT

49314	2024-11-08 11:03	VisitorLevy.exe 90cace0b799aaad6cfc9436953f75652 Generic Malware Downloader Malicious Library UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM PE File VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName			7.4	37	ZeroCERT

49315	2024-11-08 11:45	fd89b1a215ec3bdaeb410b4e6cae6a... 685a9baabb0351408643023dc9a37ad6 UPX PE File PE64 OS Processor Check VirusTotal Malware PDB			1.4	20	guest

49316	2024-11-08 16:56	cred.dll b87a6d1c962b04a2fed5693a392c2a0e Generic Malware Malicious Library UPX Antivirus PE File DLL PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software	1		9.2	53	ZeroCERT

49317	2024-11-08 16:56	cred.dll 6bbe66ecb21007341bd878d0c7bdcbe6 Generic Malware Malicious Library UPX Antivirus PE File DLL PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software	1		9.8	54	ZeroCERT

49318	2024-11-08 16:58	xloaderProtected.exe 0831be87ba259aeeab3021ae393ff305 Generic Malware Admin Tool (Sysinternals etc ...) UPX AntiDebug AntiVM PE File PE32 VirusTotal Malware Buffer PE Code Injection buffers extracted RWX flags setting unpack itself Windows crashed			6.8	55	ZeroCERT

49319	2024-11-08 16:58	clip64.dll d2b4b87740aff1e35edf5f664588a6da Amadey Generic Malware Malicious Library UPX PE File DLL PE32 OS Processor Check VirusTotal Malware Checks debugger unpack itself DNS	1		3.4	55	ZeroCERT

49320	2024-11-08 16:59	%e5%8d%a1%e5%af%86%e7%94%9f%e6... a2f8fd5483c5b970e325e521c2bdd89e Generic Malware Malicious Library UPX PE File PE32 OS Processor Check DLL DllRegisterServer dll VirusTotal Malware PDB Check memory buffers extracted Creates executable files unpack itself AppData folder Remote Code Execution			4.8	44	ZeroCERT