Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	VT	Player
9871	2021-07-09 18:35	493146005-773.xlsb ad73e76810068706e20ac22ea900e8c4 MSOffice File VirusTotal Malware unpack itself			1.2	1	ZeroCERT

9872	2021-07-09 18:36	3RdYB0yFDbNXezPE.jpg b08c1bc14e305a050747155ef13e14fe VirusTotal Malware DNS		1	1.0	3	ZeroCERT

9873	2021-07-09 18:39	TL_006251_07.exe 8e5e70c4ec5752d0f6a082e834e25f51 PWS Loki[b] Loki[m] .NET framework Generic Malware DNS AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs AntiVM_Disk VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software crashed		1	14.0	24	ZeroCERT

9874	2021-07-09 18:41	ETL_013265_601_0278.exe d48f9d5b95cf67894226d72c3333bd98 PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs VMware IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	2 Keyword trend analysis	4	15.8	26	ZeroCERT

9875	2021-07-09 18:43	Rir9hFTceu07fByO.jpg 9ff99b856e5f5265b54949713bf6dad0 VirusTotal Malware			0.4	2	ZeroCERT

9876	2021-07-09 20:03	boris.exe 47b901a802f0b1b024309cc7703a0e40 RAT Generic Malware PDF PE64 PE File VirusTotal Malware Check memory Checks debugger unpack itself			1.8	10	ZeroCERT

9877	2021-07-09 20:04	https://offlineclubz.com/BL%20... DGA DNS Socket Create Service Sniff Audio HTTP Escalate priviledges KeyLogger FTP Hijack Network Code injection Http API Internet API Steal credential ScreenShot Downloader P2P persistence AntiDebug AntiVM MSOffice File PNG Format JPEG Format VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Windows Exploit DNS crashed		2	5.2		ZeroCERT

9878	2021-07-09 20:06	3RdYB0yFDbNXezPE.jpg b08c1bc14e305a050747155ef13e14fe VirusTotal Malware Check memory RWX flags setting unpack itself DNS			2.0	3	ZeroCERT

9879	2021-07-09 20:09	ethminer.exe c6dedabf9eae985f537f6270d8f91808 PE64 OS Processor Check PE File VirusTotal Malware			0.8	14	ZeroCERT

9880	2021-07-09 20:20	index.jar a53c10a1311d5e77559b0d3a23e24488 NPKI DLL PE32 OS Processor Check PE File VirusTotal Email Client Info Stealer Malware AutoRuns Check memory Checks debugger buffers extracted WMI Creates executable files RWX flags setting unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder suspicious TLD IP Check Windows Java Email ComputerName DNS crashed	1 Keyword trend analysis	10	10.4	15	ZeroCERT

9881	2021-07-10 09:06	gang123isgodloluaintgettingthe... 81892f8c665ddfd31e6ea1a92936c6d6 AntiDebug AntiVM ELF VirusTotal Email Client Info Stealer Malware suspicious privilege Checks debugger Creates shortcut unpack itself AntiVM_Disk VM Disk Size Check installed browsers check Browser Email ComputerName			4.6	28	ZeroCERT

9882	2021-07-10 09:06	ETL_0611089510002.exe a57aac23f95604705617cecaff8ed202 PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs VMware IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	2 Keyword trend analysis	4	15.6	16	ZeroCERT

9883	2021-07-10 09:08	guangzhou-no-notification-troj... 6e80b873f781e1fcfb14fdb4b90cf5c4 PWS .NET framework RAT NPKI Generic Malware Malicious Library .NET EXE PE32 OS Processor Check PE File njRAT VirusTotal Malware Check memory Checks debugger unpack itself			2.6	42	ZeroCERT

9884	2021-07-10 09:09	ETL_051179320007.exe 6ff764fe33b3e6fca261b7e086898056 PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs VMware IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	5	16.4	24	ZeroCERT

9885	2021-07-10 09:11	buzz.exe d6114299ec233d605582a7cc13f18c94 Generic Malware Admin Tool (Sysinternals etc ...) .NET EXE PE32 PE File Check memory Checks debugger unpack itself crashed			1.4		ZeroCERT