Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
49351 2020-06-30 14:04 asdfg.exe  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Email ComputerName
20 3 18.4 44

49352 2020-06-30 13:53 asdfg.exe  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Email ComputerName
20 3 18.4 44

49353 2020-06-30 13:51 asdfg.exe  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Email ComputerName
20 3 18.4 44

49354 2020-06-30 13:50 asdfg.exe  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Email ComputerName
20 3 18.4 44

49355 2020-06-30 13:49 asdfg.exe  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Email ComputerName
20 3 18.4 44

49356 2020-06-30 13:46 3e9f05acde528ea5fd7ca9d0c2af0e...  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW anti-virtualization VM Disk Size Check human activity check installed browsers check Ransomware Windows Browser Email ComputerName DNS
40 7 22.8 44

49357 2020-06-30 13:46 asdfg.exe  

b726f090cc523eaa9861ca0c9a748493


Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Email ComputerName
20 3 18.4 44

49358 2020-06-30 12:59 http://www.nalara1220.o-r.kr/x...  

5851a6dc7297cea2a29e70e0482a5fd0


Code Injection RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
8 7 4.2

49359 2020-06-30 12:46 https://cdn1.estsecurity.com/s...  


Code Injection RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
2 6 4.2

49360 2020-06-30 11:51 https://cdn1.estsecurity.com/s...  


Code Injection exploit crash unpack itself Windows utilities Windows Exploit crashed
2 6 3.8

49361 2020-06-30 11:48 https://cdn1.estsecurity.com/s...  


Code Injection exploit crash unpack itself Windows utilities Windows Exploit crashed
2 6 3.8

49362 2020-06-30 11:44 https://cdn1.estsecurity.com/s...  


Code Injection exploit crash unpack itself Windows utilities Windows Exploit crashed
2 7 3.8

49363 2020-06-30 11:43 https://cdn1.estsecurity.com/s...  


Code Injection exploit crash unpack itself Windows utilities Windows Exploit crashed
2 7 3.8

49364 2020-06-30 11:39 https://cdn1.estsecurity.com/s...  


Code Injection exploit crash unpack itself Windows utilities Windows Exploit crashed
2 7 3.8

49365 2020-06-30 11:35 https://cdn1.estsecurity.com/s...  

f809c38f0febca37c04811e2dc51ff8e


Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder Windows Exploit crashed
2 6 4.6 1