Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	Player
8956	2023-11-11 16:40	siparis_listesi.pdf.jar e49231cd68ccb128e6f4a212c7398048 ZIP Format Check memory heapspray unpack itself Java				1.6	M	ZeroCERT

8957	2023-11-11 16:39	mvpuspgqwk.exe d8a34898267e26baf617b17a93b2a8e7 Malicious Library UPX PE32 PE File OS Processor Check unpack itself Windows Remote Code Execution crashed				1.8	M	ZeroCERT

8958	2023-11-11 16:38	checnow.exe 0597f876d97f41d70b756bf8e386074f Malicious Library UPX PE32 PE File OS Processor Check unpack itself Windows Remote Code Execution crashed				1.8	M	ZeroCERT

8959	2023-11-11 16:38	wezg.vbs aab95e79e0cb76d5b9740c28b4b503ed wscript.exe payload download Tofsee	1 Keyword trend analysis	2	2	2.2	M	ZeroCERT

8960	2023-11-11 16:37	appx.jpg.exe 2b4ce8a4efe44bca4f79f8ca5a9588d8 Malicious Library Malicious Packer UPX PE32 PE File OS Processor Check PDB				0.4	M	ZeroCERT

8961	2023-11-11 16:36	cfyjsswdds.exe 9a39f83bf263a651eab2fed7cbabfb29 Malicious Library UPX PE32 PE File OS Processor Check unpack itself Windows Remote Code Execution crashed				1.8	M	ZeroCERT

8962	2023-11-11 16:35	1699458184-explorer(1).exe 8a388d87667cbbdfb74df1fb27cf242b PE File PE64 MachineGuid Check memory Checks debugger unpack itself Windows Cryptographic key				1.6	M	ZeroCERT

8963	2023-11-11 16:35	SIPARIS_62444520.PDF.jar c9000f0381622e97f6bdd056b9a30a8f ZIP Format Check memory Checks debugger WMI RWX flags setting unpack itself Windows utilities suspicious process Windows ComputerName crashed				3.2	M	ZeroCERT

8964	2023-11-11 16:34	AWB #150322019650021pdf.exe 9956c68ad442c6a67bff5b540c62b961 AgentTesla Generic Malware Antivirus PWS SMTP KeyLogger AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer powershell PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger		4	5	13.8		ZeroCERT

8965	2023-11-11 16:34	1 25cb8a835938b25727100c2655bdbad1 Downloader UPX PE32 PE File Check memory crashed				1.2	M	ZeroCERT

8966	2023-11-11 16:33	j-5 20922828c46344d3953ccf89db8ea920 Malicious Library Downloader UPX PE32 PE File DLL JPEG Format ZIP Format Malware download Malware Malicious Traffic Check memory Checks debugger Creates executable files RWX flags setting unpack itself sandbox evasion Windows Browser ComputerName DNS Downloader	4 Keyword trend analysis	1	6 Info ET POLICY PE EXE or DLL Windows file download HTTP ET MALWARE JS/WSF Downloader Dec 08 2016 M7 ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET INFO EXE - Served Attached HTTP ET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging)	7.4	M	ZeroCERT

8967	2023-11-11 16:32	1 c85a8b6fdd5f42d78ec3fc2531c27c54 Downloader UPX PE32 PE File crashed				1.0		ZeroCERT

8968	2023-11-11 16:30	1111.exe 29b30699b114caf0dfb7854b2e9bb6bb Malicious Library Malicious Packer UPX PE32 PE File OS Processor Check Check memory Checks debugger unpack itself Windows DNS Cryptographic key		1		3.0	M	ZeroCERT

8969	2023-11-11 16:29	j-18 996601456dc3198ccedc13958bdc4f9d Malicious Library Downloader UPX PE32 PE File DLL JPEG Format ZIP Format Malware download Malware Malicious Traffic Check memory Checks debugger Creates executable files RWX flags setting unpack itself sandbox evasion Windows Browser ComputerName DNS Downloader	4 Keyword trend analysis	1	6 Info ET POLICY PE EXE or DLL Windows file download HTTP ET MALWARE JS/WSF Downloader Dec 08 2016 M7 ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET INFO EXE - Served Attached HTTP ET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging)	6.8	M	ZeroCERT

8970	2023-11-11 16:29	1 c280a3875b18ee43b6c739c728c38b09 Downloader UPX PE32 PE File Check memory crashed				1.2	M	ZeroCERT