Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
7261	2021-04-14 18:32	p0ucB2bMMHam4bt.exe 55a63d5e087bfe4da1ad71f7a0c1ede5 Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				11.8	M	32	ZeroCERT

7262	2021-04-14 18:35	prove.exe 89063b006e43a92c215176bd4ed44183 AsyncRAT backdoor Browser Info Stealer VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces suspicious TLD installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key crashed	4 Keyword trend analysis	5	1	11.6	M	43	ZeroCERT

7263	2021-04-14 18:35	regasm.exe 4725e62a767334be7658964bb24fe157 Azorult .NET framework AsyncRAT backdoor suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process AppData folder Windows DNS Cryptographic key				9.2			ZeroCERT

7264	2021-04-14 18:37	obuBl2loJwCkFQ6.exe 3a525519c4d74aa6e388ba5665fce631 Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				12.6	M	26	ZeroCERT

7265	2021-04-14 18:39	reg.exe 50fb8551eac496f827dd2d2506b6b529 Azorult .NET framework AsyncRAT backdoor suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities AppData folder Windows Cryptographic key				8.8			ZeroCERT

7266	2021-04-14 18:41	Gmazx.pdf 1cce3cca4df2243ca6aa587e24c70e4e AsyncRAT backdoor Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	4	12.4	M	17	ZeroCERT

7267	2021-04-14 18:43	test.exe 40c53dbd39cc78e89dc4c0e76c67ba41 AsyncRAT backdoor VirusTotal Malware Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces suspicious TLD Tofsee Windows DNS Cryptographic key crashed	4 Keyword trend analysis	5	1	10.0	M	29	ZeroCERT

7268	2021-04-14 18:45	ZoAZAhkABxqIpCi.exe c9d6b2cd10ef26a4c55cdd09cdf59278 Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				11.2	M	30	ZeroCERT

7269	2021-04-14 18:48	xleed.exe a9deb2ec9954233d8ff397c46cc7c33a Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key				7.6	M	10	ZeroCERT

7270	2021-04-15 07:41	jvppp.exe 9786f11c6015566b11b9c3c89378679d Emotet Gen2 Browser Info Stealer VirusTotal Malware AutoRuns PDB Malicious Traffic Check memory Creates executable files Check virtual network interfaces AppData folder IP Check Tofsee Windows Browser Remote Code Execution	6 Keyword trend analysis Info http://uyyge5w3ye.2ihsfa.com/api/fbtime http://uyyge5w3ye.2ihsfa.com/api/?sid=92468&key=165d0df49d4f7de7b67582d2a0345a1b http://ip-api.com/json/ https://script.google.com/macros/s/AKfycbyeDUociDSMjODhy_ZapM5zzyoJ3zrch9n5IUJeKIM3UQOEtZs/exec?loc=KR&app=Staoism&payoutcents=0.08&ver=3.5&ip=175.208.134.150 https://iplogger.org/18hh57 https://www.facebook.com/	10	2	7.0		55	ZeroCERT

7271	2021-04-15 07:45	Wydvkms.exe 6477b1f3539248de6531ecc34c07c7c3 Azorult .NET framework Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	4	14.4	M	27	ZeroCERT

7272	2021-04-15 07:55	Mfipdre.exe 3061e2d44678262f26d3f68a419bea3a Azorult .NET framework Gen1 Browser Info Stealer VirusTotal Malware PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows Browser ComputerName DNS Cryptographic key crashed	7 Keyword trend analysis	2	2	11.0		21	ZeroCERT

7273	2021-04-15 09:39	KL7MR6mZz2acpSc.exe aef6e395b99c7a52423cff98251b2a4b Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName DNS				8.6	M	26	ZeroCERT

7274	2021-04-15 09:40	TQzCbJbehI3WnF3.exe 122de18ad923fd18c09e77009bfb3165 Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				11.6	M	26	ZeroCERT

7275	2021-04-15 09:42	cfnUcZXwRagCXAt.exe 9f0f1c608623dee55cee4ef2c4e3e385 Azorult .NET framework AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName DNS crashed				12.2	M	26	ZeroCERT