Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Hosts	IDS	Score	Zero	VT	Player
6151	2024-01-24 09:37	crypted.exe 3c9da20ad78d24df53b661b7129959e0 PE32 PE File .NET EXE VirusTotal Malware PDB Check memory Checks debugger unpack itself Windows			3.2	M	45	ZeroCERT

6152	2024-01-24 09:35	Miner-XMR1.exe 2eafb4926d78feb0b61d5b995d0fe6ee PE File PE64 VirusTotal Malware crashed			2.0	M	51	ZeroCERT

6153	2024-01-24 09:33	StealerClient_Cpp_1_3_1.exe a03b1f153b66341594b0b79da7f23fd1 Malicious Library Malicious Packer UPX PE32 PE File OS Processor Check VirusTotal Malware			1.2		52	ZeroCERT

6154	2024-01-24 09:32	REQUEST_FOR_QUOTATION.hta f8a7239fa4fce17853f74fcd61e24bd8 AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		2	3.8		6	ZeroCERT

6155	2024-01-24 09:31	gate3_64.exe 496a327e9fd93b6db80bd14c4a719be3 UPX PE File PE64 VirusTotal Malware unpack itself Windows crashed			3.6	M	28	ZeroCERT

6156	2024-01-24 09:31	StealerClient_Sharp_1_4.exe 1dfb4fd1f6ebbfe5c0a82399d07f201f Malicious Library Malicious Packer .NET framework(MSIL) UPX PE32 PE File .NET EXE OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself WriteConsoleW ComputerName Remote Code Execution			2.6		47	ZeroCERT

6157	2024-01-24 09:29	rdx1122.exe 927fa2810d057f5b7740f9fd3d0af3c9 RedLine stealer ScreenShot PWS AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Malware Microsoft PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted WMI unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed	1	5 Info ET INFO Microsoft net.tcp Connection Initialization Activity ET MALWARE Redline Stealer TCP CnC Activity ET MALWARE [ANY.RUN] RedLine Stealer Family Related (MC-NMF Authorization) ET MALWARE Redline Stealer TCP CnC - Id1Response ET MALWARE Redline Stealer Family Activity (Response)	12.8	M	52	ZeroCERT

6158	2024-01-24 08:24	Zjqkz.exe 3ef515bb081e3a8546a39219bf1310a4 .NET framework(MSIL) PE32 PE File .NET EXE suspicious privilege Check memory Checks debugger unpack itself Windows ComputerName Cryptographic key crashed			2.2	M		ZeroCERT

6159	2024-01-24 08:22	leg221.exe d177caf6762f5eb7e63e33d19c854089 RedLine Infostealer UltraVNC Malicious Library UPX PE32 PE File OS Processor Check PDB Check memory Checks debugger unpack itself Windows DNS Cryptographic key crashed	1		3.0	M		ZeroCERT

6160	2024-01-24 08:19	gold1234.exe 4dc62aa51086843a31d87236c87f21e4 PE32 PE File .NET EXE PDB Check memory Checks debugger unpack itself			1.4	M		ZeroCERT

6161	2024-01-24 08:17	sc.exe 9e1d9449d92d69c51a605225410f46f9 Generic Malware Malicious Library Malicious Packer Antivirus UPX PE File PE64 OS Processor Check Browser Info Stealer PDB Check memory unpack itself Windows utilities suspicious process Windows Browser ComputerName Remote Code Execution			3.4	M		ZeroCERT

6162	2024-01-24 08:15	pixellslsss.exe 8244f65c3a732ddf4f1efd3e5fd6b518 RedlineStealer RedLine stealer .NET framework(MSIL) UPX PE32 PE File .NET EXE OS Processor Check Browser Info Stealer RedLine Malware download FTP Client Info Stealer Malware Microsoft suspicious privilege Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed	2	5 Info ET INFO Microsoft net.tcp Connection Initialization Activity ET MALWARE Redline Stealer TCP CnC Activity ET MALWARE [ANY.RUN] RedLine Stealer Family Related (MC-NMF Authorization) ET MALWARE Redline Stealer TCP CnC - Id1Response ET MALWARE Redline Stealer Family Activity (Response)	5.0	M		ZeroCERT

6163	2024-01-24 08:13	FirstZ.exe ffada57f998ed6a72b6ba2f072d2690a PE File PE64 Cryptocurrency Miner DNS CoinMiner	5	2	0.2			ZeroCERT

6164	2024-01-24 08:11	adobe.exe 116097ad3ab39947b356cf7cb49bde73 Emotet Gen1 Malicious Library UPX PE32 PE File MZP Format DLL DllRegisterServer dll OS Processor Check PE64 .NET DLL .NET EXE Checks debugger Creates executable files unpack itself AppData folder Windows ComputerName crashed			3.6			ZeroCERT

6165	2024-01-24 08:11	tuc5.exe 00504754d0d1d54939ef4095efe8e0f7 Emotet Gen1 Malicious Library UPX PE32 PE File MZP Format DLL DllRegisterServer dll OS Processor Check PE64 .NET DLL .NET EXE Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed			4.8			ZeroCERT