Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
6241	2021-03-21 09:25	tmt.exe c7a6d988c938e4f251cdcd967dc97cfc ftp Client info stealer email stealer Win Trojan agentTesla browser Google Chrome User Data Download management AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs Tofsee Ransomware Windows Tor ComputerName DNS Cryptographic key crashed	4 Keyword trend analysis Info http://r3---sn-3u-bh26.gvt1.com/edgedl/release2/update2/ALmnr7lDhOvozdF08iOk7Ks_1.3.36.72/GoogleUpdateSetup.exe?cms_redirect=yes&mh=pH&mip=175.208.134.150&mm=28&mn=sn-3u-bh26&ms=nvh&mt=1616285776&mv=m&mvi=3&pcm2cms=yes&pl=18&shardbypass=yes http://redirector.gvt1.com/edgedl/release2/update2/ALmnr7lDhOvozdF08iOk7Ks_1.3.36.72/GoogleUpdateSetup.exe https://update.googleapis.com/service/update2?cup2key=10:1683974852&cup2hreq=a9181ed9908f976df95c753d960b297e152c2e5cee68d3bc2ac7106a7606fbcb https://update.googleapis.com/service/update2	2	4		12.6		19	ZeroCERT

6242	2021-03-21 09:27	updatedx.exe 2dad7653e7530107decfde5b087206ea AsyncRAT backdoor VirusTotal Malware Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs Windows ComputerName DNS Cryptographic key	3 Keyword trend analysis Info http://liverpooldabestteamoftheworld.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-8E156582C0AB58A409D662D5717608E5.html - rule_id: 419 http://liverpooldabestteamoftheworld.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-7A2AB40279D7479606C06352F7C02022.html - rule_id: 419 http://liverpooldabestteamoftheworld.com/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-073BDF3395BFB968CA94EEC59190E8D0.html - rule_id: 419	3		3	5.0	M	42	ZeroCERT

6243	2021-03-21 09:28	updatewin1.exe 5b4bd24d6240f467bfbc74803c9f15b0 VirusTotal Malware unpack itself malicious URLs Windows Remote Code Execution DNS		1			4.6	M	61	ZeroCERT

6244	2021-03-21 10:00	22001.dll 9a85e1eccf35e0c2e4f1b4764228e0f9 VirusTotal Malware					0.8	M	19	ZeroCERT

6245	2021-03-21 10:01	3300.dll 5d600596afcd9e9ee6767ca449257581 VirusTotal Malware PDB					1.4	M	41	ZeroCERT

6246	2021-03-21 10:01	mon93.dll 0146eb52e4aee5da7c191971c99cb79b VirusTotal Malware Remote Code Execution					1.6	M	45	ZeroCERT

6247	2021-03-21 10:02	mon93_cr.dll 955a8fad4b34c808afa21c1c8692891d Trickbot VirusTotal Malware					1.2	M	44	ZeroCERT

6248	2021-03-21 10:02	scr.dll 7ccb61720deb6da9ca53d001693c912c VirusTotal Malware					1.4	M	52	ZeroCERT

6249	2021-03-21 10:02	44274.5557434028.dat f3d34306147c8bbc792365cb938d8109								ZeroCERT

6250	2021-03-21 10:03	mon93_cr.dll 955a8fad4b34c808afa21c1c8692891d Trickbot VirusTotal Malware					1.2	M	44	ZeroCERT

6251	2021-03-21 10:03	44274.5421270833.dat 8af38f6a3ed8cd1da5a7f31fe0fabbab								ZeroCERT

6252	2021-03-21 10:03	44274.5848459491.dat 8c6ad283e729a9b98c2947190038dd54								ZeroCERT

6253	2021-03-21 10:04	155.dll faa0272bb29d8e076f3fbe2b0c25a0bc VirusTotal Malware					0.4	M	6	ZeroCERT

6254	2021-03-21 10:04	a155.dll c957b150c5a36d00f1c964d56a151997 Trickbot VirusTotal Malware					1.2	M	25	ZeroCERT

6255	2021-03-21 10:04	mon105_cr.dll 0f342e64cf48ef4b6131f7c2f1244f70 Trickbot VirusTotal Malware					0.6	M	16	ZeroCERT