Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	Zero	VT	Player
9931	2021-07-13 07:45	sample.vbs 3d4bbd5ea4e0f0c552fbdc13cca0c7e1 AutoRuns Creates executable files Windows			1.4			ZeroCERT

9932	2021-07-13 07:51	................................. 2227974643a64d245e5eb933648c5fa1 RTF File doc AntiDebug AntiVM Malware MachineGuid Malicious Traffic Check memory Checks debugger exploit crash unpack itself Windows Exploit DNS Cryptographic key DDNS crashed	1 Keyword trend analysis	3	6.4			ZeroCERT

9933	2021-07-13 09:22	7hjujnfds.exe 270c3859591599642bd15167765246e3 Ficker Stealer PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency MachineGuid Check memory Collect installed applications sandbox evasion anti-virtualization IP Check installed browsers check Ransomware Browser ComputerName Software	1 Keyword trend analysis	4	8.0	M	60	ZeroCERT

9934	2021-07-13 09:30	lv.exe 50dad4adf51cd79103eb8f3e7c51793c Gen1 RedLine Stealer Gen2 UPX Malicious Library PE File PE32 DLL OS Processor Check VirusTotal Malware Code Injection Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder AntiVM_Disk WriteConsoleW VM Disk Size Check Windows		1	6.4		45	ZeroCERT

9935	2021-07-13 09:30	shortearthget.png 05109b470054300ba8d5d60a5d4fe532 PE File PE32 DLL OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Malicious Traffic Checks debugger buffers extracted RWX flags setting unpack itself Check virtual network interfaces suspicious process ComputerName Remote Code Execution DNS crashed	4 Keyword trend analysis	12	8.0		13	ZeroCERT

9936	2021-07-13 09:32	6th%20july.exe 09f8303a0b3321883bd45bc8a306c8b1 Generic Malware Admin Tool (Sysinternals etc ...) PE File PE32 .NET EXE VirusTotal Malware Check memory Checks debugger unpack itself DNS crashed		5	3.0		31	ZeroCERT

9937	2021-07-13 09:32	MetroSoftware.exe 02a19d3dfdcf507f3f7039bb361f08ca PWS .NET framework Generic Malware Malicious Packer AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows DNS keylogger		1	11.4		36	ZeroCERT

9938	2021-07-13 09:34	tukur.exe 74cc8791ab49d471328eef8127c493ed PWS .NET framework Generic Malware Admin Tool (Sysinternals etc ...) PE File PE32 .NET EXE Check memory Checks debugger unpack itself crashed			1.4			ZeroCERT

9939	2021-07-13 09:34	BRO.exe 2fa7450cd3760bbceae8c1d69ac6a483 Malicious Library PE File PE32 DLL VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder Windows			4.8		30	ZeroCERT

9940	2021-07-13 09:36	EMU.exe 9d950d95e33cda5789d549ae9f27d3a1 PWS .NET framework RAT Generic Malware Admin Tool (Sysinternals etc ...) PE File PE32 .NET EXE VirusTotal Malware Check memory Checks debugger unpack itself crashed			2.0		18	ZeroCERT

9941	2021-07-13 09:37	QoVOGG.exe ccffa416d71ae9cec2a09136a87a656e PWS .NET framework RAT Generic Malware KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces WriteConsoleW Windows DNS crashed	1 Keyword trend analysis	4	12.8		19	ZeroCERT

9942	2021-07-13 09:38	flashplayerpp_install_cn.exe b516ece6fab6a089d4540de2cdb7ffce Antivirus UPX PE64 PE File OS Processor Check VirusTotal Malware			1.2		12	ZeroCERT

9943	2021-07-13 09:39	new.exe 809b579e0a86214540493a3dff98d148 Generic Malware DNS AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS DDNS		3	14.6		37	ZeroCERT

9944	2021-07-13 09:41	server.exe ee759b97c88356e23b04afa427c6cb94 PE File PE32 MSOffice File VirusTotal Malware RWX flags setting unpack itself Disables Windows Security Windows crashed			4.2		50	ZeroCERT

9945	2021-07-13 09:41	tosqzr.exe 99114947607cef7fa94a3fa5f2ab19e0 Malicious Library PE File PE32 DLL VirusTotal Malware Check memory Creates executable files AppData folder			2.4		18	ZeroCERT