Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
6301	2021-03-22 10:19	VersiumResearc.exe 8fc83336c7143f3c5315be10dec00b1a VirusTotal Malware unpack itself Remote Code Execution				2.4	M	26	ZeroCERT

6302	2021-03-22 10:21	statemobi.txt e6747dbaaa2188e855d413301c78f1d0 VirusTotal Malware Buffer PE suspicious privilege Code Injection Checks debugger buffers extracted unpack itself Windows Remote Code Execution DNS keylogger		1		11.8	M	28	ZeroCERT

6303	2021-03-22 10:25	Bypass.exe 897aabd3ac16050d62b8aacf85541454 Antivirus AsyncRAT backdoor VirusTotal Malware powershell suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger Creates shortcut Creates executable files unpack itself Disables Windows Security Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName DNS Cryptographic key	4 Keyword trend analysis Info https://cdn.discordapp.com/attachments/790590543397781576/820879760904683561/System.exe https://cdn.discordapp.com/attachments/790590543397781576/816661031254229033/Disable.vbs https://cdn.discordapp.com/attachments/790590543397781576/821076672370573422/Machos1.exe https://cdn.discordapp.com/attachments/790590543397781576/821075940146282537/Token_Stealer.bat	4	1	11.4		28	ZeroCERT

6304	2021-03-22 10:26	System.exe a85190837b16f6251a85a30b9d4f5c14 VirusTotal Malware PDB WriteConsoleW DNS		2		3.2	M	44	ZeroCERT

6305	2021-03-22 10:26	REW.exe 4437932f91042579798df965170c55a8 VirusTotal Malware crashed				1.6	M	25	ZeroCERT

6306	2021-03-22 10:32	VersiumRes.exe bd8ab3f50151c366cc155b729971feb4 Browser Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces suspicious TLD installed browsers check Tofsee Ransomware Windows Browser ComputerName DNS Cryptographic key crashed	4 Keyword trend analysis Info http://edgedl.gvt1.com/edgedl/release2/update2/ALmnr7lDhOvozdF08iOk7Ks_1.3.36.72/GoogleUpdateSetup.exe http://picturework.top/ https://update.googleapis.com/service/update2?cup2key=10:4230926761&cup2hreq=54883cade0ed38d56a1f9540f8d2bc8aa67fac2351aa803d4e909eeec3ddc91d https://api.ip.sb/geoip	6	5	12.6	M	20	ZeroCERT

6307	2021-03-22 10:45	api.py e49b879973e65f8f9b7d85d817356237							ZeroCERT

6308	2021-03-22 10:48	api.py 5c562d127e81e893cbbfbdf07842b6fd							ZeroCERT

6309	2021-03-22 10:51	api.py 11287554dc0ca0f1119edc5909c28d18							ZeroCERT

6310	2021-03-22 11:07	22.dll 649b5c913739cea195c7662ff412b8ce VirusTotal Malware PDB				1.4	M	50	ZeroCERT

6311	2021-03-22 11:39	22.dll 649b5c913739cea195c7662ff412b8ce VirusTotal Malware PDB unpack itself				2.2	M	50	조광섭

6312	2021-03-22 12:21	22.dll 649b5c913739cea195c7662ff412b8ce VirusTotal Malware PDB				1.4	M	50	ZeroCERT

6313	2021-03-22 12:22	22.dll 649b5c913739cea195c7662ff412b8ce VirusTotal Malware PDB				1.4	M	50	ZeroCERT

6314	2021-03-22 12:23	22.dll 649b5c913739cea195c7662ff412b8ce VirusTotal Malware PDB unpack itself				2.2	M	50	조광섭

6315	2021-03-22 12:26	22.dll 649b5c913739cea195c7662ff412b8ce VirusTotal Malware PDB				1.4	M	50	ZeroCERT