Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
10156	2023-09-25 10:24	charles.exe 1bd78136fa8b9e9e63fde92829a9743d PWS SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	1 Keyword trend analysis	4	4	15.2		38	ZeroCERT

10157	2023-09-25 10:21	docjoh20230925.exe f8050d0af7ac48aacab3cc8fead40277 WebCam KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process AntiVM_Disk VM Disk Size Check Windows ComputerName Cryptographic key keylogger				11.2		31	ZeroCERT

10158	2023-09-25 10:19	collar.exe 795d3334576dc4a7e2b480e62c57fb6c WebCam KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process AntiVM_Disk VM Disk Size Check Windows ComputerName Cryptographic key keylogger				11.2	M	35	ZeroCERT

10159	2023-09-25 10:19	docgen20230925.exe 72f02b6a2b8fd2a73ae8715fcc2323ca Malicious Library UPX PWS SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger		5	5	14.6			ZeroCERT

10160	2023-09-25 10:17	docdav20230923.exe 31c0fb555469b0836b447b2e71c8fd74 PWS SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	1 Keyword trend analysis	4	4	15.2	M	32	ZeroCERT

10161	2023-09-25 10:11	out.msi 7758d5af5470ac0005fed5ec83c5ab2a Malicious Library MSOffice File CAB OS Processor Check Malware download VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check DarkGate Stealer ComputerName DNS Downloader	1 Keyword trend analysis	1	2	4.6		40	ZeroCERT

10162	2023-09-25 09:52	c.exe 6c3f60e6c4f557e093d8605eb5661e68 Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware unpack itself Remote Code Execution				2.0	M	31	ZeroCERT

10163	2023-09-25 09:51	i.txt.exe a44cd9ea69e9e6ac198c56460cd912e9 Downloader Socket Internet API AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware Buffer PE Code Injection Check memory Checks debugger buffers extracted unpack itself Detects VirtualBox Windows DNS Cryptographic key keylogger		1		11.2		56	ZeroCERT

10164	2023-09-25 09:49	com.wag.walker_2.59.0.apk 24c0f3369b739b64510d3d5b704a5115 ZIP Format Word 2007 file format(docx)							guest

10165	2023-09-25 09:14	androidx.compose.ui_ui-viewbin... b2d7f14c5810c3ee6b519c317297190e Downloader Create Service Socket P2P DGA Steal credential Http API Escalate priviledges PWS Hijack Network Sniff Audio HTTP DNS ScreenShot Code injection Internet API persistence FTP KeyLogger AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			2	4.8			guest

10166	2023-09-25 09:14	androidx.coordinatorlayout_coo... 30a04cf33ee91a3ecf4b75c71268f316 Downloader Create Service Socket P2P DGA Steal credential Http API Escalate priviledges PWS Hijack Network Sniff Audio HTTP DNS ScreenShot Code injection Internet API persistence FTP KeyLogger AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			2	4.2			guest

10167	2023-09-25 09:13	androidx.compose.ui_ui.version b2d7f14c5810c3ee6b519c317297190e AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed			2	3.8			guest

10168	2023-09-25 09:12	androidx.compose.ui_ui-util.ve... b2d7f14c5810c3ee6b519c317297190e Downloader Create Service Socket P2P DGA Steal credential Http API Escalate priviledges PWS Hijack Network Sniff Audio HTTP DNS ScreenShot Code injection Internet API persistence FTP KeyLogger AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			2	4.2			guest

10169	2023-09-25 09:11	androidx.compose.ui_ui-viewbin... b2d7f14c5810c3ee6b519c317297190e Downloader Create Service Socket P2P DGA Steal credential Http API Escalate priviledges PWS Hijack Network Sniff Audio HTTP DNS ScreenShot Code injection Internet API persistence FTP KeyLogger AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			2	4.8			guest

10170	2023-09-25 09:10	androidx.compose.ui_ui-util.ve... b2d7f14c5810c3ee6b519c317297190e AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed			2	3.8			guest