Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
5941	2024-02-02 18:23	c8e7b0d3b6afa22e801cacaf16b373... c8e7b0d3b6afa22e801cacaf16b37355 Generic Malware Malicious Library VMProtect Antivirus PE File DLL PE64 VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities suspicious process Windows ComputerName Cryptographic key crashed				7.6		43	ZeroCERT

5942	2024-02-02 18:23	87429e9223d45e0359cd1c41c03018... 87429e9223d45e0359cd1c41c0301836 Generic Malware Malicious Library PE File PE64 VirusTotal Malware Checks debugger crashed				2.2		50	ZeroCERT

5943	2024-02-02 18:22	19c2decfa7271fa30e48d4750c1d18... 19c2decfa7271fa30e48d4750c1d18c1 Emotet Generic Malware Malicious Library PE File PE64 VirusTotal Malware Checks debugger crashed				2.0		30	ZeroCERT

5944	2024-02-02 18:21	88f183304b99c897aacfa321d58e18... 88f183304b99c897aacfa321d58e1840 Generic Malware Malicious Library VMProtect Antivirus PE File DLL PE64 VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process Windows ComputerName Cryptographic key crashed				8.2		52	ZeroCERT

5945	2024-02-02 18:20	7b6d02a459fdaa4caa1a5bf741c4bd... 7b6d02a459fdaa4caa1a5bf741c4bd42 Gen1 Generic Malware Malicious Library Malicious Packer UPX VMProtect Escalate priviledges PWS AntiDebug AntiVM PE File PE64 OS Processor Check PE32 MZP Format DLL VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName	2 Keyword trend analysis	2		9.2		48	ZeroCERT

5946	2024-02-02 18:19	7457dc037c4a5f3713d9243a0dfb1a... 7457dc037c4a5f3713d9243a0dfb1a2c Generic Malware Malicious Library VMProtect Antivirus PE File DLL PE64 VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process Windows ComputerName Cryptographic key crashed				8.2		49	ZeroCERT

5947	2024-02-02 18:18	27ef6917fe32685fdf9b755eb8e975... 27ef6917fe32685fdf9b755eb8e97565 Gen1 Generic Malware Malicious Library Malicious Packer UPX VMProtect Escalate priviledges PWS AntiDebug AntiVM PE File PE64 OS Processor Check PE32 MZP Format DLL Malware download VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW human activity check Windows ComputerName DNS	2 Keyword trend analysis	2	2	9.6		53	ZeroCERT

5948	2024-02-02 17:51	Alej.exe 732ee820e560b24779c626f4ddf85b21 .NET framework(MSIL) PE32 PE File .NET EXE VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Anonymous DNS		2	3	2.4	M	50	ZeroCERT

5949	2024-02-02 13:46	no.exe 28b38ccdc05a8aff57014c2bccf49af2 Malicious Library UPX AntiDebug AntiVM PE32 PE File OS Processor Check MSOffice File VirusTotal Malware Code Injection Check memory Checks debugger buffers extracted RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed	8 Keyword trend analysis Info https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=ASKXGp0qMIEc5MFQxs1aKn9G2iv74lF6wY3BJGxH-8DXUl8WehWN5u-jeiNJda50EamSr_wPf13w1Q&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S286077521%3A1706848978878354 https://accounts.google.com/ServiceLogin?passive=1209600&continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F https://accounts.google.com/InteractiveLogin?continue=https://accounts.google.com/&followup=https://accounts.google.com/&passive=1209600&ifkv=ASKXGp3R1LF2E0Wdi59xiyT5waIzFlhA4_Gj9RrurSMQEWfAfh3grbEpvLcFG_ttljVpw-0v88wkNQ https://accounts.google.com/ https://accounts.google.com/_/bscframe https://accounts.google.com/generate_204?0DF1lQ https://www.google.com/favicon.ico https://ssl.gstatic.com/images/branding/googlelogo/2x/googlelogo_color_74x24dp.png	6	1	6.0		23	ZeroCERT

5950	2024-02-02 13:43	syncUpd.exe 5221face19d30914a73520072c399bf7 Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware PDB unpack itself Remote Code Execution				2.2	M	34	ZeroCERT

5951	2024-02-02 13:40	crptchk.exe 63d9528b6667199d22c482f15643ab31 RedLine Infostealer UltraVNC Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware PDB Check memory Checks debugger unpack itself Windows Cryptographic key crashed				2.6	M	28	ZeroCERT

5952	2024-02-02 13:38	o3tech.exe ce588fbb745992adf637104433d1143c Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware crashed				1.6		36	ZeroCERT

5953	2024-02-02 13:37	1.jpg_.exe 1d13f9a72c0c42ab2f1a5ee792230a53 Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware PDB unpack itself Remote Code Execution				2.0	M	28	ZeroCERT

5954	2024-02-02 13:36	cred64.dll a1fbee549a00971cece863265a7403aa Generic Malware Malicious Library UPX Antivirus PE File DLL PE64 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell PDB suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process sandbox evasion installed browsers check Windows Browser ComputerName DNS Cryptographic key Software	1 Keyword trend analysis	1		9.8	M	45	ZeroCERT

5955	2024-02-02 13:36	catzx.exe 3daa9eb37e6a2e9403cfaf7cfbfb7ef2 PE32 PE File .NET EXE VirusTotal Malware PDB Check memory Checks debugger unpack itself				2.4	M	37	ZeroCERT