Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
7336	2021-04-17 10:22	catalog-323305862.xlsm fcb2af95d2b6abd32e4886d302b207aa Check memory unpack itself Tofsee crashed	1 Keyword trend analysis	9 Info alexandrea-friesen16ka.ru.com(34.95.253.189) - mailcious useragent20.barloggio.net(116.0.21.14) - mailcious jerry-dibbert16ih.ru.com(34.95.253.189) ri.posgradocolumbia.edu.py(50.87.146.86) - mailcious casadopai.net.br(192.185.214.152) - mailcious 192.185.214.152 - mailcious 50.87.146.86 - mailcious 34.95.253.189 - mailcious 116.0.21.14 - mailcious	2	3.2	M		ZeroCERT

7337	2021-04-17 10:24	catalog-342909133.xlsm 2f6bd277a917a4bca6216444ecbc1d62 ICMP traffic unpack itself Tofsee DNS	1 Keyword trend analysis	10 Info alexandrea-friesen16ka.ru.com(34.95.253.189) - mailcious useragent20.barloggio.net(116.0.21.14) - mailcious jerry-dibbert16ih.ru.com(34.95.253.189) ri.posgradocolumbia.edu.py(50.87.146.86) - mailcious casadopai.net.br(192.185.214.152) - mailcious 192.185.214.152 - mailcious 50.87.146.86 - mailcious 116.0.21.14 - mailcious 34.95.253.189 - mailcious 104.21.19.200	2	4.2	M		ZeroCERT

7338	2021-04-17 10:25	file.exe 28babff4bf714869ede6763962b401f6 Raccoon Stealer Glupteba VirusTotal Malware PDB unpack itself Windows Remote Code Execution DNS crashed				3.6	M	24	ZeroCERT

7339	2021-04-17 10:26	fack.jpg 9cef89ec89411f062a8347f161ecab35 VirusTotal Malware				0.4	M	5	ZeroCERT

7340	2021-04-18 10:36	a268e9e152c260a0e80431aa8d6df1... a58394937da9d3adb33e948058fde4e9 Vulnerability VirusTotal Malware Malicious Traffic unpack itself Tofsee		14 Info blogs.g2gtechnologies.com(208.91.199.15) - malware sureoptimize.com(142.93.247.242) - malware tenmoney.business(104.21.8.30) - mailcious pattayastore.com(202.183.165.89) - malware rsimadinah.com(66.96.230.225) - malware insvat.com(185.42.104.77) - malware littleindiadirectory.com(18.141.196.101) - malware 185.42.104.77 - malware 208.91.199.15 - malware 202.183.165.89 142.93.247.242 66.96.230.225 - malware 172.67.156.186 - mailcious 18.141.196.101 - malware	1	4.8	M	50	guest

7341	2021-04-18 13:32	360ServerNet.exe d6eeb868200cb461e5d0357555c56b76 VirusTotal Malware PDB Check memory sandbox evasion anti-virtualization DNS				3.0		3	ZeroCERT

7342	2021-04-19 08:47	Private_RunPe.dll dc1be938a5696dc6cdba439e6b4c5010 AsyncRAT backdoor VirusTotal Malware PDB				1.4		22	ZeroCERT

7343	2021-04-19 08:49	lol.exe 11fc8f52d449929dd9fbe6ac930b6686 AsyncRAT backdoor VirusTotal Malware Check memory Checks debugger unpack itself				1.8		39	ZeroCERT

7344	2021-04-19 08:51	ARMV7L 9e6baff7b784ab6a62ba0e803461f262 VirusTotal Email Client Info Stealer Malware Code Injection Check memory Checks debugger unpack itself Browser Email DNS				4.2		10	ZeroCERT

7345	2021-04-19 08:51	swag.exe e708a1326e771df1d327cf23fce3e5ec AsyncRAT backdoor VirusTotal Malware DNS		1		3.4		44	ZeroCERT

7346	2021-04-19 08:54	SECH.exe c272d7b6b2c0b86e6883edbaa57f61f4 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName DNS crashed				12.2		25	ZeroCERT

7347	2021-04-19 09:31	swag.exe e708a1326e771df1d327cf23fce3e5ec AsyncRAT backdoor VirusTotal Malware DNS		1		3.4	M	44	guest

7348	2021-04-19 09:43	SECH.exe c272d7b6b2c0b86e6883edbaa57f61f4 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				11.6	M	25	guest

7349	2021-04-19 09:52	SECH.exe c272d7b6b2c0b86e6883edbaa57f61f4 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				11.6	M	25	guest

7350	2021-04-19 10:00	SECH.exe c272d7b6b2c0b86e6883edbaa57f61f4 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName crashed				11.6	M	25	guest