Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
6691	2021-03-30 18:25	sum9e8.zip 738837137b86dd5e632450fe83a8a77f Dridex TrickBot VirusTotal Malware PDB MachineGuid Malicious Traffic Checks debugger unpack itself Collect installed applications installed browsers check Kovter Browser ComputerName DNS crashed	1 Keyword trend analysis	1	1	1	5.4	M	9	ZeroCERT

6692	2021-03-30 18:27	yqcsymrnj.rar f16549beb46741a7ab052173af4c620d Dridex TrickBot VirusTotal Malware PDB MachineGuid Malicious Traffic Checks debugger unpack itself Collect installed applications installed browsers check Kovter Browser ComputerName DNS crashed	1 Keyword trend analysis	1	1	1	5.8	M	22	ZeroCERT

6693	2021-03-30 18:27	svchost.exe f13c768b67b9f4fa379b32bd5d8c8126 Azorult .NET framework VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself suspicious process Windows ComputerName Cryptographic key					9.6	M	24	ZeroCERT

6694	2021-03-30 18:30	clbqztx8.tar 145493e8315d2defee67560498664e43 Dridex TrickBot VirusTotal Malware PDB MachineGuid Malicious Traffic Checks debugger unpack itself Collect installed applications installed browsers check Kovter Browser ComputerName DNS crashed	1 Keyword trend analysis	1	1	1	5.4	M	8	ZeroCERT

6695	2021-03-31 07:23	cc5qg9x.tar 648eee43c6256c9709e4253a92ae75ee VirusTotal Malware PDB MachineGuid Malicious Traffic Checks debugger unpack itself Collect installed applications installed browsers check Browser ComputerName DNS crashed	1 Keyword trend analysis	1		1	6.0	M	32	ZeroCERT

6696	2021-03-31 07:24	ak5kpl1.zip 5ab62455a6925f0e8adcdb4eaa9e0000 VirusTotal Malware PDB MachineGuid Malicious Traffic Checks debugger unpack itself Collect installed applications installed browsers check Browser ComputerName DNS crashed	4 Keyword trend analysis Info http://edgedl.gvt1.com/edgedl/release2/update2/ALmnr7lDhOvozdF08iOk7Ks_1.3.36.72/GoogleUpdateSetup.exe https://update.googleapis.com/service/update2?cup2key=10:644134477&cup2hreq=b0304cb7b894c76ec8f50f4ee5d57fe7bd1b3289f0499e1c170e7c9da675feea https://update.googleapis.com/service/update2 https://210.65.244.176/ - rule_id: 598	3		1	6.0	M	31	ZeroCERT

6697	2021-03-31 07:49	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1			14.6		20	ZeroCERT

6698	2021-03-31 08:03	3003.gif 814cad137e105bff9dfc5749231ced3d Malware MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious TLD ComputerName	4 Keyword trend analysis	7			5.4	M		ZeroCERT

6699	2021-03-31 08:03	file.exe 4dfbf6282d936b288984b5194058eba9 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1			15.0		20	ZeroCERT

6700	2021-03-31 08:05	3003.gif 6d7a8b7d7188b4e0f59ed8045319b8aa Malware MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself ComputerName	4 Keyword trend analysis	7			4.4	M		ZeroCERT

6701	2021-03-31 09:02	yqcsymrnj.rar f16549beb46741a7ab052173af4c620d VirusTotal Malware PDB MachineGuid Malicious Traffic Checks debugger unpack itself Collect installed applications installed browsers check Browser ComputerName DNS crashed	1 Keyword trend analysis	1		1	5.8	M	22	ZeroCERT

6702	2021-03-31 09:19	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1			14.6	M	20	조광섭

6703	2021-03-31 09:23	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1			15.6	M	20	조광섭

6704	2021-03-31 09:27	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1			14.6	M	20	조광섭

6705	2021-03-31 09:29	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1			14.6	M	20	조광섭