Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
5671	2021-03-06 10:08	vbc2.exe bc9f6abbec6549f88f0eeb791f60f1cf VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key					7.8	M	20	ZeroCERT

5672	2021-03-06 10:08	w80q.xls daf94b02109c469f64a887334e31c2ab VirusTotal Malware unpack itself malicious URLs DNS					2.4	M	17	ZeroCERT

5673	2021-03-06 10:13	winlog.exe a9969b5ac2ea5e0860c096da13b405c2 VirusTotal Malware suspicious privilege Check memory Checks debugger Creates executable files unpack itself AppData folder malicious URLs ComputerName crashed					5.0	M	12	ZeroCERT

5674	2021-03-06 10:41	wwrtw.doc d56fc97e3c1b99d076635216669d34e4 Malware download VirusTotal Malware Malicious Traffic exploit crash unpack itself malicious URLs Windows Exploit DNS crashed Downloader	1 Keyword trend analysis	1	6 Info ET INFO Executable Download from dotted-quad Host ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile ET MALWARE Likely Evil EXE download from dotted Quad by MSXMLHTTP M1 ET POLICY PE EXE or DLL Windows file download HTTP ET MALWARE Likely Evil EXE download from dotted Quad by MSXMLHTTP M2 ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response		5.2	M	26	ZeroCERT

5675	2021-03-06 11:00	dwm.exe a394746c4b70d5bad2b449e793d22e61 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key crashed					11.4		30	ZeroCERT

5676	2021-03-06 18:28	5.exe 6a50d5e91b193be284aa02106ee35e97 VirusTotal Malware malicious URLs Tofsee crashed		2	1		2.2	M	58	ZeroCERT

5677	2021-03-06 18:29	dubi.exe 2301df3722a9635294c12b9208f5a155 VirusTotal Malware PDB unpack itself Windows Remote Code Execution DNS crashed					4.0	M	41	ZeroCERT

5678	2021-03-06 18:59	marxlo.exe 1c7a241966323185ddea3b121d08b14a VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key					8.4	M	27	ZeroCERT

5679	2021-03-06 19:00	marorg.exe 359a1cb7e6580ad805aca21ec061c047 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName DNS Cryptographic key crashed					13.0	M	14	ZeroCERT

5680	2021-03-06 19:03	updatewin.exe 9010fa92cc83afe00fab38703e6ffa77 VirusTotal Malware suspicious privilege Malicious Traffic unpack itself malicious URLs Tofsee DNS	1 Keyword trend analysis	2	2	1	4.0	M	58	ZeroCERT

5681	2021-03-06 19:06	updatewin1.exe 5b4bd24d6240f467bfbc74803c9f15b0 VirusTotal Malware unpack itself malicious URLs Windows Remote Code Execution DNS					4.6	M	66	ZeroCERT

5682	2021-03-06 19:07	updatewin2.exe 996ba35165bb62473d2a6743a5200d45 VirusTotal Malware unpack itself Windows Remote Code Execution					3.6	M	66	ZeroCERT

5683	2021-03-06 21:23	win32.exe 3cf8157c0d82e2e0bba68515d5047ee3 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key					8.2	M	43	ZeroCERT

5684	2021-03-07 21:43	44260.452358912.jpg.exe ac79ba4c66f83b25d5bedc3d104418bc Remote Code Execution					0.8	M		ZeroCERT

5685	2021-03-07 21:45	44261.3782300926.dat.exe 6fd7851094822d7b0c3c66cd3f27be63 AutoRuns PDB Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder sandbox evasion WriteConsoleW Windows ComputerName					8.0			ZeroCERT

First
Previous
371
372
373
374
375
376
377
378
379
380
Next
Last
Total : 48,345cnts

Submissions

bc9f6abbec6549f88f0eeb791f60f1cf

daf94b02109c469f64a887334e31c2ab

a9969b5ac2ea5e0860c096da13b405c2

d56fc97e3c1b99d076635216669d34e4

a394746c4b70d5bad2b449e793d22e61

6a50d5e91b193be284aa02106ee35e97

2301df3722a9635294c12b9208f5a155

1c7a241966323185ddea3b121d08b14a

359a1cb7e6580ad805aca21ec061c047

9010fa92cc83afe00fab38703e6ffa77

5b4bd24d6240f467bfbc74803c9f15b0

996ba35165bb62473d2a6743a5200d45

3cf8157c0d82e2e0bba68515d5047ee3

ac79ba4c66f83b25d5bedc3d104418bc

6fd7851094822d7b0c3c66cd3f27be63

View

Insert

Alert