Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	Zero	VT	Player
6706	2021-03-31 09:30	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS DDNS		2	15.0	M	20	조광섭

6707	2021-03-31 09:34	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1	14.6	M	20	조광섭

6708	2021-03-31 09:40	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS DDNS		2	16.0	M	20	조광섭

6709	2021-03-31 10:05	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1	14.6	M	20	조광섭

6710	2021-03-31 10:10	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1	14.6	M	20	조광섭

6711	2021-03-31 10:12	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS DDNS		2	16.0	M	20	조광섭

6712	2021-03-31 10:25	eg5rert2.exe 46bb7c8edade2a3cafb4e69bf3c64bcd VirusTotal Malware unpack itself crashed			1.0		5	ZeroCERT

6713	2021-03-31 10:25	kuk.exe ae45169cc13784accdcfe98c38fcb63c Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName DNS Cryptographic key crashed	2 Keyword trend analysis		9.6	M	23	ZeroCERT

6714	2021-03-31 10:25	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS	2 Keyword trend analysis	1	14.6	M	20	조광섭

6715	2021-03-31 10:27	ds1.exe daebceddaf9923e5f8becdda27889872 AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself			8.2	M	33	ZeroCERT

6716	2021-03-31 10:30	ac.exe 077acaba7ab3d2fd714034725a01aad8 AsyncRAT backdoor Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName		3	11.0	M		ZeroCERT

6717	2021-03-31 10:32	ret1.exe 83e6a0bec752cfa12db166b45ba49a79 VirusTotal Malware unpack itself DNS crashed	3 Keyword trend analysis		1.6	M	6	ZeroCERT

6718	2021-03-31 10:33	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS DDNS	3 Keyword trend analysis	2	14.2	M		조광섭

6719	2021-03-31 10:34	ds2.exe ef5fc78d236230012149149a51674d08 Antivirus AsyncRAT backdoor VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Disables Windows Security powershell.exe wrote suspicious process Windows ComputerName DNS Cryptographic key	2 Keyword trend analysis		10.8	M	19	ZeroCERT

6720	2021-03-31 10:36	ret5er4.exe 092fb1c71954a1169077eaf3e8a8f822 VirusTotal Malware unpack itself crashed			1.2	M	16	ZeroCERT