Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
5236	2021-02-18 11:19	jamesibrus.exe 5e4497531744bc8d17582e6992aac545 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs DNS		1		4.6	M	32	ZeroCERT

5237	2021-02-18 11:26	regasm.exe c506001817f048e7565ef7f41fd9321f Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs installed browsers check Browser Email ComputerName Software		1		11.8	M	54	ZeroCERT

5238	2021-02-18 11:26	Protected Client.js 53c6ba86eedbf52338675e5d806f7cfd Malware powershell AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI heapspray Creates shortcut ICMP traffic unpack itself Windows utilities Check virtual network interfaces suspicious process malicious URLs WriteConsoleW Windows Java ComputerName DNS Cryptographic key DDNS keylogger		6	3	18.0	M		ZeroCERT

5239	2021-02-18 11:29	03.exe 7ef4a769deac0b058d5edaba0d3cf635 Browser Info Stealer Malware download FTP Client Info Stealer Azorult VirusTotal Email Client Info Stealer Malware MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications AppData folder malicious URLs sandbox evasion anti-virtualization installed browsers check Browser Email ComputerName DNS Software	1 Keyword trend analysis	1	3	14.6		29	ZeroCERT

5240	2021-02-18 11:30	supportdoc.xxls.exe 5ed8ba344e7e14a158994bccc1d96882 VirusTotal Malware Report suspicious privilege Checks debugger buffers extracted unpack itself Check virtual network interfaces ComputerName DNS		1	1	5.2	M	25	ZeroCERT

5241	2021-02-18 11:37	vbc.exe 415654e080811ae1e85b042af31e801e Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs installed browsers check Browser Email ComputerName DNS Software		1		12.2	M	23	ZeroCERT

5242	2021-02-18 11:37	winlog.exe 47f73b541c0bb1950fba158136881eec Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs AntiVM_Disk VM Disk Size Check installed browsers check Browser Email ComputerName DNS Software	1 Keyword trend analysis	2	7 Info ET MALWARE LokiBot User-Agent (Charon/Inferno) ET MALWARE LokiBot Checkin ET MALWARE LokiBot Request for C2 Commands Detected M1 ET MALWARE LokiBot Request for C2 Commands Detected M2 ET MALWARE LokiBot Application/Credential Data Exfiltration Detected M1 ET MALWARE LokiBot Application/Credential Data Exfiltration Detected M2 ET MALWARE LokiBot Fake 404 Response	15.0	M	42	ZeroCERT

5243	2021-02-18 11:39	xo06tz96.zip.exe b23c2e9a3109113726d429c974e58d53 VirusTotal Malware PDB				0.6	M	9	ZeroCERT

5244	2021-02-18 11:41	yarox.exe 12336c7742d903ebd7d908c117e86b63 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs DNS	1 Keyword trend analysis	5		4.8	M	25	ZeroCERT

5245	2021-02-18 16:45	AwDBawPHNIyZdTO.exe 7867eacb5a5f913cefd820e135b73719 VirusTotal Malware Buffer PE Check memory Checks debugger buffers extracted unpack itself				2.8		9	ZeroCERT

5246	2021-02-18 16:45	8VCkpdvKEerV992.exe 88107b3b06a901a76ed304e0ec1aa5c9 VirusTotal Malware Check memory Checks debugger unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName DNS				4.4		14	ZeroCERT

5247	2021-02-18 16:51	CIZ.exe 0f1a5666c9775d2b44dda70de661bb7d VirusTotal Malware RWX flags setting unpack itself DNS				2.2		23	ZeroCERT

5248	2021-02-18 16:52	bb.exe 27a26b9535f908ea109a9e1fa986a842 VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces malicious URLs WriteConsoleW Tofsee Windows Cryptographic key	1 Keyword trend analysis	3	1	11.4		26	ZeroCERT

5249	2021-02-18 17:36	cmd1.exe b11c9ef809d957b741a2e086d62c2eb6 suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows ComputerName DNS crashed				10.0	M		ZeroCERT

5250	2021-02-18 17:37	setup.exe 708cf56061b75db614bd5ce9ebff2c75 VirusTotal Malware Check memory Creates shortcut Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check installed browsers check Browser ComputerName				3.6		28	ZeroCERT

First
Previous
341
342
343
344
345
346
347
348
349
350
Next
Last
Total : 48,355cnts

Submissions

5e4497531744bc8d17582e6992aac545

c506001817f048e7565ef7f41fd9321f

53c6ba86eedbf52338675e5d806f7cfd

7ef4a769deac0b058d5edaba0d3cf635

5ed8ba344e7e14a158994bccc1d96882

415654e080811ae1e85b042af31e801e

47f73b541c0bb1950fba158136881eec

b23c2e9a3109113726d429c974e58d53

12336c7742d903ebd7d908c117e86b63

7867eacb5a5f913cefd820e135b73719

88107b3b06a901a76ed304e0ec1aa5c9

0f1a5666c9775d2b44dda70de661bb7d

27a26b9535f908ea109a9e1fa986a842

b11c9ef809d957b741a2e086d62c2eb6

708cf56061b75db614bd5ce9ebff2c75

View

Insert

Alert