Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
49486 2020-06-25 15:55 온라인+학술대회+한시적+지원+관련+Q&A.hwp...  

257a81471a001af1fa0d82069c92993c


VirusTotal Malware Checks debugger Creates shortcut Creates executable files unpack itself
1.8 3

49487 2020-06-25 15:32 http://hzhuafengdq.cn/content/...  

e443b6913685380f9b2716cbb9d2ed60


Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
34 6 4.6

49488 2020-06-25 15:30 온라인+학술대회+한시적+지원+관련+Q&A.hwp...  

257a81471a001af1fa0d82069c92993c


VirusTotal Malware Checks debugger Creates shortcut Creates executable files unpack itself
1.8 3

49489 2020-06-25 15:24 http://hzhuafengdq.cn/content/...  

e443b6913685380f9b2716cbb9d2ed60


Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
34 6 4.6

49490 2020-06-25 15:11 202006091658_c90a72e11f1ff6cad...  

71743b62964b6634da810d13b413501f


Checks debugger unpack itself Remote Code Execution
1.2

49491 2020-06-25 15:08 202006091658_c90a72e11f1ff6cad...  

71743b62964b6634da810d13b413501f


Checks debugger unpack itself Remote Code Execution
1.2

49492 2020-06-25 15:08 http://office-services-sec.com...  

3fe1e1b56b127dd61ebf330b827a458d


VirusTotal Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
6 6 5.2 13

49493 2020-06-25 15:01 b37cdeed56f98ddb4a507ff7d273fa...  

71743b62964b6634da810d13b413501f


Checks debugger unpack itself malicious URLs Remote Code Execution
2.0

49494 2020-06-25 14:58 crimea.ps1  

b07c04d53312dd24935701ac700cc8a5


VirusTotal Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key
2 2 9.0 9

49495 2020-06-25 14:56 crimea.ps1  

b07c04d53312dd24935701ac700cc8a5


VirusTotal Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key
2 2 9.0 9

49496 2020-06-25 14:40 http://office-services-sec.com...  

a87a313263697c3f81881defa55b269c


VirusTotal Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
6 6 5.2 13

49497 2020-06-25 14:33 http://office-services-sec.com...  

1d0e1d24ad35a2357af094b32e1cb25a


VirusTotal Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed
6 6 5.2 13

49498 2020-06-25 14:03 https://cdn1.estsecurity.com/s...  

599168bde854ae6d22a9cc5df5a3c0e2


Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder Windows Exploit crashed
2 7 5.0

49499 2020-06-25 12:55 http://37.49.230.204/ABU.exe  

4c097af29449e5d1e6cf77a9c58b2968


VirusTotal Malware Code Injection Malicious Traffic Creates executable files exploit crash unpack itself Windows utilities AppData folder Windows Exploit DNS crashed
4 5 6.8 15

49500 2020-06-25 11:31 http://37.49.230.204/ABU.exe  

7bec956dcddd39b40c88debf266e291a


VirusTotal Malware Code Injection Malicious Traffic Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder Windows Exploit DNS crashed
4 5 7.2 15