Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
8356	2023-12-15 15:14	Mpclient.dll 6ecc1d52fba67fdcade83bbdc9576477 Malicious Library UPX PE32 PE File DLL OS Processor Check VirusTotal Malware PDB Checks debugger unpack itself				1.6	M	22	ZeroCERT

8357	2023-12-15 15:12	microsoftdecidedtoreleaseautoh... 531a09e71351ec16fd78034a53bd1fec MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware buffers extracted RWX flags setting exploit crash Exploit crashed				3.2	M	32	ZeroCERT

8358	2023-12-15 15:10	jst.js 55168cc1c03c6a5177fe0d4c559cbd6f VirusTotal Malware crashed				0.6	M	1	ZeroCERT

8359	2023-12-15 15:08	pdf.exe 0e9f35b662b5f2686e0648d014d144e2 UPX AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Malware Microsoft suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed		1	3	11.0	M	40	ZeroCERT

8360	2023-12-15 15:07	microsoftdeletedprofilehistory... 1578764a625e6b24828568abf19b591a MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware RWX flags setting exploit crash Exploit crashed				2.8	M	31	ZeroCERT

8361	2023-12-15 15:06	OnlineFix64.dll 0cccdd04b47dfcd6d20b4d1e21738cca PE File DLL PE64 VirusTotal Malware				1.6		38	ZeroCERT

8362	2023-12-15 15:05	setup.msi 512117fac8d5544ac9a0a911a1b7e2b8 Generic Malware Malicious Library Antivirus MSOffice File OS Processor Check VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName				2.2		4	ZeroCERT

8363	2023-12-15 15:03	1.js fd70d6abba9da87f416b6c8829955573 VirusTotal Malware crashed				1.2		32	ZeroCERT

8364	2023-12-15 08:46	7.exe 58fc6de6c4e5d2fda63565d54feb9e75 Generic Malware Malicious Library Malicious Packer UPX PE32 PE File OS Processor Check WriteConsoleW				0.6	M		ZeroCERT

8365	2023-12-15 08:44	pdf.exe 2bce2e5420d837f173ce430e1da00d3c UPX AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer RedLine Malware download FTP Client Info Stealer Malware Microsoft suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed		2	3	9.8	M		ZeroCERT

8366	2023-12-15 08:42	psaux.exe bd84bdff727b82364685f4179170d81e Malicious Packer UPX PE File PE64 Checks debugger Check virtual network interfaces DNS		1		2.0	M		ZeroCERT

8367	2023-12-15 08:39	4ygvd.exe 9641bf93090e32e89ceb1994165195ad Formbook .NET framework(MSIL) PE32 PE File .NET EXE PDB Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key				2.0	M		ZeroCERT

8368	2023-12-15 08:39	Cwzlz.exe b53777547ba689a1dd28cf3dbd7dd99f PE32 PE File .NET EXE Check memory Checks debugger unpack itself ComputerName				1.0	M		ZeroCERT

8369	2023-12-15 08:38	HRSword_v5.0.1.1.exe a60a60af95a32a81795761865b7f3bd9 Downloader Malicious Library UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM PE32 PE File AutoRuns suspicious privilege Code Injection Check memory Checks debugger Creates executable files Windows utilities Auto service suspicious process AntiVM_Disk VM Disk Size Check Windows				7.2	M		ZeroCERT

8370	2023-12-15 08:37	forexploitQmlmpwsbt.exe fdc30e63e6bf304286fd15b94c95e520 PE32 PE File .NET EXE Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces Windows ComputerName DNS Cryptographic key	1 Keyword trend analysis	1		3.8	M		ZeroCERT