Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
8776	2023-09-09 21:29	HDDREQ.hta 4b2493d809acdca8b79aa2e22c04144c AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed			2	4.6		23	ZeroCERT

8777	2023-09-08 20:20	de2fd62fafe61f46ad967c84dd7fbc... f282875b9958bd3706f9063bf8c5bf14 VBA_macro Generic Malware AntiDebug AntiVM MSOffice File VirusTotal Email Client Info Stealer Malware Code Injection Check memory Checks debugger unpack itself installed browsers check Browser Email				4.2		35	guest

8778	2023-09-08 20:02	de2fd62fafe61f46ad967c84dd7fbc... f282875b9958bd3706f9063bf8c5bf14 VBA_macro Generic Malware AntiDebug AntiVM MSOffice File VirusTotal Email Client Info Stealer Malware Code Injection Check memory Checks debugger unpack itself installed browsers check Browser Email				4.2		35	guest

8779	2023-09-08 18:03	damianozx.exe 0e254d6ee6e7425b701e03e585f96581 .NET framework(MSIL) PE File .NET EXE PE32 PDB Check memory Checks debugger unpack itself ComputerName				1.6	M		ZeroCERT

8780	2023-09-08 17:59	de2fd62fafe61f46ad967c84dd7fbc... f282875b9958bd3706f9063bf8c5bf14 VBA_macro Generic Malware MSOffice File VirusTotal Malware unpack itself				2.2		35	ZeroCERT

8781	2023-09-08 17:20	de2fd62fafe61f46ad967c84dd7fbc... f282875b9958bd3706f9063bf8c5bf14 VBA_macro Generic Malware AntiDebug AntiVM MSOffice File VirusTotal Email Client Info Stealer Malware Code Injection Check memory Checks debugger unpack itself installed browsers check Browser Email				4.2		35	guest

8782	2023-09-08 16:44	Setup1234.exe c42c4ca7198620f45aeb43134316b966 RedLine Stealer .NET framework(MSIL) Confuser .NET PWS SMTP AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself ComputerName				6.4	M	38	ZeroCERT

8783	2023-09-08 16:43	rot13.exe 7fe90dcf5c49fd85ce12939b8cc3315c Gen1 Malicious Library UPX Anti_VM PE File PE64 ftp OS Processor Check DLL ZIP Format VirusTotal Malware Check memory Creates executable files crashed				1.6	M	19	ZeroCERT

8784	2023-09-08 16:41	167.exe c176a6da5f105c6522b3fe8cefb23b10 Malicious Library PE File PE32 VirusTotal Malware PDB				1.6	M	33	ZeroCERT

8785	2023-09-08 16:37	windowsystem.exe 88c5868c1384d86f9ee36d893ac66bb6 Malicious Library UPX PE File PE32 OS Processor Check .NET EXE VirusTotal Malware PDB suspicious privilege Check memory Checks debugger Creates executable files unpack itself AppData folder ComputerName Remote Code Execution				4.8	M	34	ZeroCERT

8786	2023-09-08 16:37	SusanoFortniteCheats.exe f41e33f932386be30f0cc61bb6a64c6c RedLine Infostealer RedLine stealer UPX .NET framework(MSIL) Confuser .NET PE File .NET EXE PE32 OS Processor Check Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Malware Microsoft suspicious privilege Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed		1	5 Info ET INFO Microsoft net.tcp Connection Initialization Activity ET MALWARE [ANY.RUN] RedLine Stealer Related (MC-NMF Authorization) ET MALWARE Redline Stealer TCP CnC Activity - MSValue (Outbound) ET MALWARE Redline Stealer Activity (Response) ET MALWARE Redline Stealer TCP CnC Activity - MSValue (Response)	6.2	M	55	ZeroCERT

8787	2023-09-08 16:35	de2fd62fafe61f46ad967c84dd7fbc... f282875b9958bd3706f9063bf8c5bf14 VBA_macro Generic Malware MSOffice File VirusTotal Malware RWX flags setting unpack itself				2.6		35	guest

8788	2023-09-08 16:34	susan.exe c07930442d2253b09e32111f7bd4694d Malicious Library UPX AntiDebug AntiVM PE File PE32 OS Processor Check DLL VirusTotal Malware PDB Code Injection Checks debugger Creates executable files unpack itself AppData folder Remote Code Execution				4.4	M	30	ZeroCERT

8789	2023-09-08 16:32	LuckyClickerStary.exe fd2d9f92c0745f6eb925938507dbd9ad Malicious Library UPX Malicious Packer Anti_VM PE File PE32 OS Processor Check VirusTotal Malware Check memory unpack itself				1.4		27	ZeroCERT

8790	2023-09-08 16:30	morninfgggvbsdroid.vbs db17a6a35f61b2825ed83d49666977df Generic Malware Antivirus Hide_URL PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger buffers extracted Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	3 Keyword trend analysis	3	1	9.2		13	ZeroCERT