Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	Zero	VT	Player
6721	2021-03-31 10:37	csrss.exe c952383a9e62b399001ebbb03468d786 Antivirus VirusTotal Malware AutoRuns Malicious Traffic Check memory unpack itself Auto service suspicious process sandbox evasion Windows Browser DNS	4 Keyword trend analysis Info http://192.168.56.103:2869/upnphost/udhisapi.dll?content=uuid:d96d86f3-ac35-41f2-9523-f4e50073f2f3 http://45.144.225.135/config.txt http://192.168.56.103:5357/da8ea474-550f-433d-b444-54d2081d1d24/ http://192.168.56.103:2869/upnphost/udhisapi.dll?content=uuid:2d284ad3-5648-4376-8360-b0559e35418f	3	8.6	M	48	ZeroCERT

6722	2021-03-31 10:37	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS	3 Keyword trend analysis	1	14.6	M	20	조광섭

6723	2021-03-31 10:44	K2hOfsvQu81mvmy.exe 0c208055bfa12870ef0a41cf38855e34 VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS		1	14.6	M	20	조광섭

6724	2021-03-31 13:23	689uksdffs.exe 77be0dd6570301acac3634801676b5d7 Ficker Stealer VirusTotal Malware IP Check	1 Keyword trend analysis	4	3.4	M	56	ZeroCERT

6725	2021-03-31 14:08	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6726	2021-03-31 14:17	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6727	2021-03-31 14:21	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6728	2021-03-31 14:42	ac.exe 077acaba7ab3d2fd714034725a01aad8 AsyncRAT backdoor VirusTotal Malware Code Injection Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName		3	12.0	M	18	조광섭

6729	2021-03-31 14:49	ac.exe 077acaba7ab3d2fd714034725a01aad8 AsyncRAT backdoor VirusTotal Malware Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName		3	12.2	M	37	조광섭

6730	2021-03-31 14:52	ac.exe 077acaba7ab3d2fd714034725a01aad8 AsyncRAT backdoor VirusTotal Malware Code Injection Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName		3	13.0	M	37	조광섭

6731	2021-03-31 15:31	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6732	2021-03-31 15:38	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6733	2021-03-31 15:43	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6734	2021-03-31 15:49	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭

6735	2021-03-31 15:55	putty.exe 6fa14b3b1c54a26f0b9bbcd2f6b45899 VirusTotal Malware Check memory Checks debugger unpack itself Remote Code Execution			2.0	M	1	조광섭