Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
6226	2021-03-19 18:10	151.dll 0d03222ee04f5458b5e45d4d7721bf51 VirusTotal Malware					0.6		17	ZeroCERT

6227	2021-03-19 18:10	AjXib.txt 6bab770bd66fa7242fa314a0987a89ec Process Kill FindFirstVolume CryptGenKey Antivirus Malware download VirusTotal Malware powershell Buffer PE suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote Check virtual network interfaces suspicious process AppData folder Windows ComputerName Cryptographic key		2	3		10.2	M	11	ZeroCERT

6228	2021-03-19 18:10	mcnam.exe d93d72caaa511c0715063a464bf231ff Azorult .NET framework Google Chrome User Data browser info stealer VirusTotal Malware Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key keylogger		2			13.0	M	29	ZeroCERT

6229	2021-03-19 18:10	mbena.exe e81cc62679b5e5aa3291b0168b271ee9 Azorult .NET framework VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows ComputerName DNS Cryptographic key crashed					10.2	M	18	ZeroCERT

6230	2021-03-19 18:10	152.dll 8e4730f5074685f8d7c2e994c96c3bc8 VirusTotal Malware					0.8	M	22	ZeroCERT

6231	2021-03-19 18:28	ndena.exe d4b31689b01301f90ce578d418a74231 Azorult .NET framework ftp Client info stealer email stealer Win Trojan agentTesla browser Google Chrome User Data Download management VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Ransomware Windows Tor ComputerName Cryptographic key crashed					10.8	M	18	ZeroCERT

6232	2021-03-19 18:29	millionx.exe 7cd87f6b793cf88f2a528b36d912f200 ftp Client info stealer email stealer Win Trojan agentTesla browser Antivirus Google Chrome User Data Download management AsyncRAT backdoor Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Disables Windows Security powershell.exe wrote Check virtual network interfaces suspicious process malicious URLs WriteConsoleW Tofsee Ransomware Windows Browser Tor Email ComputerName DNS Cryptographic key Software crashed keylogger	9 Keyword trend analysis Info http://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-27DEA882709EB4AB4DC87AB17C9F9AC4.html - rule_id: 439 http://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-27DEA882709EB4AB4DC87AB17C9F9AC4.html http://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-32CFDE036B8284D232AC019549C2132F.html - rule_id: 439 http://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-32CFDE036B8284D232AC019549C2132F.html http://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-EB3EAA6FFA810913E932ADBCF6EE4B10.html - rule_id: 439 http://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-EB3EAA6FFA810913E932ADBCF6EE4B10.html https://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-32CFDE036B8284D232AC019549C2132F.html https://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-27DEA882709EB4AB4DC87AB17C9F9AC4.html https://jejendjcjfhh.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-EB3EAA6FFA810913E932ADBCF6EE4B10.html	2	1	3	17.8	M	24	ZeroCERT

6233	2021-03-19 18:42	org1.exe 4ee5de008185dc163cdfd508f2656ac8 AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key crashed					11.4	M	9	ZeroCERT

6234	2021-03-19 18:43	org1-09.exe ff4a7060b43aa5b686e439a1f6614436 Azorult .NET framework ftp Client info stealer email stealer Win Trojan agentTesla browser Google Chrome User Data Download management AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName DNS Cryptographic key crashed					13.0	M	27	ZeroCERT

6235	2021-03-19 18:47	org1.exe 4ee5de008185dc163cdfd508f2656ac8 AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key crashed					11.4	M	9	ZeroCERT

6236	2021-03-20 01:02	apple.gif 73fcd0f65a31ecd1a19345af6334c86a VirusTotal Malware					0.4		5	ZeroCERT

6237	2021-03-20 01:06	44274.5855459491.dat 1af204270e28e0781aecc31a6a7798f8								ZeroCERT

6238	2021-03-21 08:49	scr.dll db41613664aa6f3db0829ce5190de4f7 VirusTotal Malware Checks debugger buffers extracted unpack itself DNS	1 Keyword trend analysis	1			3.2	M	37	guest

6239	2021-03-21 08:51	start.exea.exe 32f3be8697cbd7c40c05ee83318ae14c Generic Malware VirusTotal Malware unpack itself malicious URLs Remote Code Execution					3.2	M	55	guest

6240	2021-03-21 09:24	twenthfour.exe 1f0c8747c32790a0f9c39c659e09d1c5 Azorult .NET framework VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities AppData folder malicious URLs Windows Cryptographic key					9.4	M	20	ZeroCERT