Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
5911	2024-02-04 16:58	Admin.exe 0f92f5314f8e572e3074c0d1a845350c Malicious Library PE32 PE File VirusTotal Malware unpack itself crashed					2.2	M	37	ZeroCERT

5912	2024-02-04 16:56	univ.exe e63c6dcaebb548eb22c15e57686a011a Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware unpack itself Remote Code Execution DNS		1			2.8	M	34	ZeroCERT

5913	2024-02-04 16:56	clip64.dll 154c3f1334dd435f562672f2664fea6b Amadey Malicious Library UPX PE32 PE File DLL OS Processor Check VirusTotal Malware Malicious Traffic Checks debugger unpack itself DNS	1 Keyword trend analysis	1			3.6	M	42	ZeroCERT

5914	2024-02-04 16:54	V-8.exe 211eb503085017f7f77b5c4f0837cb88 Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key		2	4		9.8	M	46	ZeroCERT

5915	2024-02-04 16:54	V-6.exe 90e2de999fce24da971fd86fe064a31f Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC VirusTotal Malware Cryptocurrency wallets Cryptocurrency AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key		1	4		9.8	M	46	ZeroCERT

5916	2024-02-04 16:52	art33.exe 34d4591575fdbde20d36469f54b0022f PE File PE64 VirusTotal Cryptocurrency Miner Malware Cryptocurrency DNS CoinMiner		2	2		1.2	M	37	ZeroCERT

5917	2024-02-04 16:52	inte.exe 7a861d2a7d07c0efa9e429d6bbad1ffc Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware unpack itself Remote Code Execution					2.2	M	34	ZeroCERT

5918	2024-02-04 16:50	discord.exe 6ba419bbf9727a5420ed6360f4857a70 PE File PE64 VirusTotal Malware Check memory Checks debugger unpack itself Windows DNS Cryptographic key		1			3.2	M	52	ZeroCERT

5919	2024-02-04 16:49	builden.exe db95cbd1fa1fc7983128cecf51a8795f Malicious Library UPX PE32 PE File OS Processor Check .NET EXE VirusTotal Malware PDB suspicious privilege Check memory Checks debugger Creates executable files unpack itself Remote Code Execution					3.6	M	36	ZeroCERT

5920	2024-02-04 16:47	inte.exe fa092cd96d9916f2e247067653cd1110 Malicious Library UPX PE32 PE File OS Processor Check Malware suspicious privilege Malicious Traffic WMI Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName DNS	1 Keyword trend analysis	1		1	4.2	M		ZeroCERT

5921	2024-02-04 16:47	app1.exe 86443efb8ee2289340119b5e84aad4f1 UPX PE File PE64 Buffer PE suspicious privilege MachineGuid Check memory Checks debugger buffers extracted unpack itself AntiVM_Disk VM Disk Size Check ComputerName DNS		1			4.6	M		ZeroCERT

5922	2024-02-04 16:47	npp86Installerx64.exe d8b897481e51cfab29862e8f9d5a039d Emotet Gen1 Malicious Library UPX PE32 PE File CAB AutoRuns PDB MachineGuid Check memory Checks debugger Creates executable files unpack itself AntiVM_Disk VM Disk Size Check Windows ComputerName Remote Code Execution					3.4	M		ZeroCERT

5923	2024-02-04 16:45	conhost.exe ea1f082ea4f956a042ec414357eca36f Formbook Generic Malware .NET framework(MSIL) UPX Antivirus AntiDebug AntiVM PE32 PE File .NET EXE OS Processor Check FormBook Malware download Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key	1 Keyword trend analysis	4	1		9.0	M		ZeroCERT

5924	2024-02-04 16:45	art22.exe 68bb10f285c0dbab62f5a8ad7c25ee7a PE File PE64 Cryptocurrency Miner Cryptocurrency DNS CoinMiner		4	2		0.8	M		ZeroCERT

5925	2024-02-04 16:43	V-14.exe 5bb552a7343723e6d81249cf19572f68 Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key		1	4		8.6	M		ZeroCERT