Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
8071	2023-10-03 19:40	EKE.vbs 0fca862b7e267e54d2388490fcc40f79 Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger buffers extracted Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	3 Keyword trend analysis	3	1	8.4		1	ZeroCERT

8072	2023-10-03 19:38	bQrq.exe 9da8f029a4eb62771fff586e7018a79c Downloader Malicious Packer ScreenShot AntiDebug AntiVM PE File PE32 Browser Info Stealer Remcos VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder AntiVM_Disk sandbox evasion VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS DDNS keylogger	1 Keyword trend analysis	4	3	15.0		62	ZeroCERT

8073	2023-10-03 19:38	ed6543.txt.exe 598f6a222625e0074443733c47dc9875 Malicious Library UPX Malicious Packer PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Check virtual network interfaces IP Check Tofsee Browser Email ComputerName DNS Software crashed		2	4	5.2		57	ZeroCERT

8074	2023-10-03 19:29	USD.txt.exe d60a27f84140ad7288e31362502fa01b Malicious Library UPX Malicious Packer PE File PE32 .NET EXE Browser Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Browser Email ComputerName crashed				3.6		39	ZeroCERT

8075	2023-10-03 19:27	smit.txt.exe be05cb057755eebb0eeddc86b2a85530 Malicious Library UPX Malicious Packer PE File PE32 .NET EXE Browser Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Browser Email ComputerName crashed				3.8		48	ZeroCERT

8076	2023-10-03 19:27	ngtw.txt.exe 6eba65f61ad038bb9e97fb017787a3ab Malicious Library UPX Malicious Packer PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer suspicious privilege Check memory Checks debugger unpack itself Check virtual network interfaces suspicious TLD Tofsee Windows Browser Email ComputerName DNS Software crashed		2	3	5.8			ZeroCERT

8077	2023-10-03 19:26	ngohms.txt.exe a4d3a2a7a7a67f335bbe0ea3d760bb7c Malicious Library UPX Malicious Packer PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer suspicious privilege Check memory Checks debugger unpack itself Browser Email ComputerName Software crashed				3.2			ZeroCERT

8078	2023-10-03 13:59	explorer.exe 76599bf790a73e2b744baf9a32e85f68 UPX PE File PE32 .NET EXE VirusTotal Malware AutoRuns suspicious privilege Malicious Traffic Checks debugger Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder WriteConsoleW Tofsee Windows ComputerName DNS crashed	1 Keyword trend analysis	3	1	10.4	M	54	ZeroCERT

8079	2023-10-03 13:58	nde.txt.exe 1c995704e0c0c3de5db167ea14339e7c AgentTesla Malicious Library UPX PE File PE32 .NET EXE Browser Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Browser Email ComputerName crashed				3.8		57	ZeroCERT

8080	2023-10-03 13:58	apamaaktivozebas364.txt.exe fde1998a4f91b01722de069c5496560b AgentTesla Malicious Library UPX PE File PE32 .NET EXE Browser Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Browser Email ComputerName crashed				3.8		59	ZeroCERT

8081	2023-10-03 13:55	i0iooi0i0IOI0IOI0i0ioioi0I0I0I... c525805107dafbab4307168b2544d08c MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware exploit crash Tofsee Exploit crashed		2	1	2.4	M	30	ZeroCERT

8082	2023-10-03 13:51	ioi0i0i0ioioioio0ii0i000ii0ioo... 74244e004f53b8def29d5f6352f9a849 MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware exploit crash Tofsee Exploit crashed		2	1	2.2	M	25	ZeroCERT

8083	2023-10-03 13:41	ioi0ioioooi000ioiooioioi000000... fb96a229f20223b7cb1850628519bb47 MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware exploit crash Tofsee Exploit crashed		2	1	2.4	M	30	ZeroCERT

8084	2023-10-03 13:33	x.x.x.xx.x.xx.x.x.x.doc a4b026c2274bcf2ffe1d343d2eb3ff24 MS_RTF_Obfuscation_Objects RTF File doc exploit crash Tofsee Exploit crashed		2	1	1.4	M		ZeroCERT

8085	2023-10-03 13:24	sysuper.exe b038c77ebb4ab8e3e036a790b2b95c6d .NET framework(MSIL) PE File PE32 .NET EXE VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself Windows ComputerName Cryptographic key				4.0	M	30	ZeroCERT