Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
8791	2023-11-22 13:38	Hpscavymo.exe 839d669ae9ae927b8cc45d5d0360f8ca UPX PE File PE64 OS Processor Check VirusTotal Malware Buffer PE suspicious privilege MachineGuid Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key crashed				4.4	M	40	ZeroCERT

8792	2023-11-22 13:36	hv.exe e6c5f81f9361ada44fedd6b460e29b62 Admin Tool (Sysinternals etc ...) .NET framework(MSIL) UPX Malicious Library PWS AntiDebug AntiVM PE32 PE File .NET EXE OS Processor Check DLL Browser Info Stealer Malware download FTP Client Info Stealer VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications Check virtual network interfaces AppData folder installed browsers check SectopRAT Windows Browser Backdoor ComputerName DNS Cryptographic key Software crashed		1	1	13.2	M	23	ZeroCERT

8793	2023-11-22 13:34	Muqpgf.exe 5aaffd3bd21341aabdfdae52e487813b .NET framework(MSIL) UPX PWS SMTP AntiDebug AntiVM PE32 PE File .NET EXE VirusTotal Malware Buffer PE AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder Windows Cryptographic key				9.8	M	51	ZeroCERT

8794	2023-11-22 13:32	1699835572-explorer.exe 506761d4ae9aa7134c001c7f0b7b4827 PE File PE64 VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself Windows DNS Cryptographic key		1		3.4	M	51	ZeroCERT

8795	2023-11-22 13:30	j-21 2c19732b70f22a5cc10d19343efe53f7 Malicious Library Downloader PE32 PE File DLL Malware download VirusTotal Malware Malicious Traffic Checks debugger Creates executable files unpack itself AppData folder AntiVM_Disk sandbox evasion VM Disk Size Check GameoverP2P Zeus Windows DNS Downloader	1 Keyword trend analysis	1	9 Info SURICATA HTTP Request abnormal Content-Encoding header ET MALWARE Likely Evil EXE download from dotted Quad by MSXMLHTTP M1 ET POLICY PE EXE or DLL Windows file download HTTP ET MALWARE OneLouder EXE download possibly installing Zeus P2P ET MALWARE Likely Evil EXE download from dotted Quad by MSXMLHTTP M2 ET MALWARE Likely Evil EXE download from MSXMLHTTP non-exe extension M2 ET MALWARE JS/WSF Downloader Dec 08 2016 M6 ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET INFO EXE - Served Attached HTTP	5.2	M	52	ZeroCERT

8796	2023-11-22 13:29	allnewumm.exe b1d5ab180b539da823cf40c7638d0286 NPKI HermeticWiper Generic Malware Suspicious_Script NSIS Malicious Library UPX Antivirus Malicious Packer Admin Tool (Sysinternals etc ...) Anti_VM Javascript_Blob PE32 PE File .NET EXE PNG Format JPEG Format OS Processor Check ZIP Format icon BMP Format VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check Ransomware Windows Cryptographic key crashed				9.0	M	50	ZeroCERT

8797	2023-11-22 13:27	TrueCrypt_ptqlwc.exe b90275debeb32092d4939345d6541f1f Generic Malware Malicious Library Malicious Packer UPX PE File PE64 OS Processor Check VirusTotal Malware crashed				1.6	M	39	ZeroCERT

8798	2023-11-22 13:27	227.exe ec9034a2f644a91e5fcdd3d7b853352e Malicious Library UPX PE32 PE File MZP Format OS Processor Check VirusTotal Malware unpack itself crashed		1		1.6	M	16	ZeroCERT

8799	2023-11-22 13:25	cp.exe d4d062f232be92ac114e6298fb110e93 Themida Packer Downloader UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM PE32 PE File VirusTotal Malware AutoRuns Code Injection Check memory Creates executable files unpack itself Windows utilities Checks Bios Detects VirtualBox Detects VMWare suspicious process WriteConsoleW VMware anti-virtualization Windows ComputerName Firmware crashed				10.8	M	31	ZeroCERT

8800	2023-11-22 13:25	h.exe 2b5bf637eb6e5bedb1af2cda714bec09 Generic Malware Malicious Library Malicious Packer Antivirus UPX PE File PE64 OS Processor Check VirusTotal Malware crashed				1.4	M	50	ZeroCERT

8801	2023-11-22 13:23	deepweb.exe 7a51a34ca5ccfe6eb43ef6abc0f92d46 RedlineStealer RedLine Infostealer RedLine stealer .NET framework(MSIL) UPX PE32 PE File .NET EXE OS Processor Check Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces installed browsers check Tofsee Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed	2 Keyword trend analysis	3	4	8.0	M	65	ZeroCERT

8802	2023-11-21 18:18	Updatе.exe 3f6d2aa85fcd8e38412f4ab60f8f47f4 Malicious Library Malicious Packer UPX PE32 PE File OS Processor Check VirusTotal Malware AntiVM_Disk VM Disk Size Check				1.8		33	ZeroCERT

8803	2023-11-21 18:17	htmlvb.vbs a106d0b5d4423dbcb1b7551cc6f011b1 Generic Malware Antivirus PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger buffers extracted wscript.exe payload download Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Tofsee Windows ComputerName Cryptographic key	4 Keyword trend analysis	5	2	9.0		7	ZeroCERT

8804	2023-11-21 18:17	htmlbrowserhistorydeletedbymic... 0a869df2007f5731f95c5d84aad6bbbf MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware VBScript Malicious Traffic buffers extracted RWX flags setting exploit crash Tofsee Exploit DNS crashed	3 Keyword trend analysis	6	3	4.6	M	33	ZeroCERT

8805	2023-11-21 08:10	brandmar.exe a9c5d3db8ea47ab1e03cbf5a91065d24 NPKI HermeticWiper Generic Malware NSIS Suspicious_Script Malicious Library UPX Antivirus Malicious Packer Admin Tool (Sysinternals etc ...) Anti_VM Javascript_Blob PE32 PE File .NET EXE PNG Format JPEG Format OS Processor Check ZIP Format icon BMP Format VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check Ransomware Windows crashed				7.8	M	53	ZeroCERT