Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	Zero	VT	Player
10801	2023-08-11 08:59	server.exe 539796b3c5bfeecd94ad28751c257fd6 UPX Malicious Library Malicious Packer OS Processor Check PE64 PE File						ZeroCERT

10802	2023-08-11 08:59	koob7.exe 2894a2b884b3eae1a82c6203be7cb747 Suspicious_Script_Bin UPX Malicious Library PE File PE32 PNG Format DLL Check memory Creates shortcut Creates executable files unpack itself AppData folder Windows crashed			2.8			ZeroCERT

10803	2023-08-11 08:57	dfgdfg.exe 78bc9c35531a7e1a31af3bdff4083df6 Malicious Packer PE64 PE File buffers extracted unpack itself crashed			1.4	M		ZeroCERT

10804	2023-08-11 08:56	0000000000000%23%23%23%23%23%2... 12403b14978ed748ee844e915ac83bdb MS_RTF_Obfuscation_Objects RTF File doc Malware Malicious Traffic buffers extracted RWX flags setting exploit crash IP Check Exploit DNS crashed	1 Keyword trend analysis	3	4.0			ZeroCERT

10805	2023-08-11 08:54	38h4tp20bm85.exe d525784068f44c8c06b97756f67bca48 LokiBot UPX Malicious Library PWS AntiDebug AntiVM OS Processor Check PE File PE32 Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer Cryptocurrency wallets Cryptocurrency Buffer PE PDB Code Injection Check memory Checks debugger buffers extracted WMI unpack itself Check virtual network interfaces suspicious TLD Ransomware Windows Browser Email ComputerName Software crashed	1 Keyword trend analysis	3	13.2			ZeroCERT

10806	2023-08-11 08:54	old.exe 657dc4f38e42f897d0591605cb20ee3e PE64 PE File DNS crashed		1	2.4	M		ZeroCERT

10807	2023-08-11 08:52	gucc.exe 954f8a5432fcf4567a25a5cdff191572 Admin Tool (Sysinternals etc ...) .NET EXE PE File PE32 PDB Check memory Checks debugger unpack itself Windows Cryptographic key crashed			1.8	M		ZeroCERT

10808	2023-08-11 08:52	BRR.exe 1bf35ce85d9dabad107f0bbea91a0579 Lazarus Family Themida Packer UPX Malicious Library Anti_VM .NET EXE PE File PE32 Browser Info Stealer Check memory Checks debugger unpack itself Checks Bios Collect installed applications Detects VMWare VMware anti-virtualization installed browsers check Windows Browser ComputerName Remote Code Execution Firmware DNS Cryptographic key crashed		1	8.4	M		ZeroCERT

10809	2023-08-11 08:49	stanzx.exe 214882a8a3a850bea2ffd8022c6ababf .NET framework(MSIL) .NET EXE PE File PE32 PDB suspicious privilege Code Injection Check memory Checks debugger unpack itself			4.4	M		ZeroCERT

10810	2023-08-11 08:49	file.exe 7ddcb9a1fe843f1676612ee86489f322 UPX Malicious Library OS Processor Check PE File PE32 unpack itself Remote Code Execution			1.0			ZeroCERT

10811	2023-08-11 06:39	rev 0B744B7667EF335CB32CEA7A9E... d355dd22f9d71b1b9bce9b03771c7f26 RedLine stealer Generic Malware Malicious Library Admin Tool (Sysinternals etc ...) Anti_VM OS Processor Check crashed			0.2			guest

10812	2023-08-11 04:41	rev 0B744B7667EF335CB32CEA7A9E... d355dd22f9d71b1b9bce9b03771c7f26 RedLine stealer Generic Malware Malicious Library Admin Tool (Sysinternals etc ...) Anti_VM OS Processor Check crashed			0.2			guest

10813	2023-08-11 04:02	rev 0B744B7667EF335CB32CEA7A9E... d355dd22f9d71b1b9bce9b03771c7f26 RedLine stealer Generic Malware Malicious Library Admin Tool (Sysinternals etc ...) Anti_VM OS Processor Check						guest

10814	2023-08-11 00:39	test.jar 734974d295357d98dc56ecc8b45ba6a6 OS Processor Check ZIP Format Check memory heapspray unpack itself Java			1.6			guest

10815	2023-08-10 16:40	159.exe fbc04c52eb18b7db7206ef8cd0bbc1ab UPX Malicious Library ScreenShot AntiDebug AntiVM OS Processor Check PE File PE32 VirusTotal Malware Buffer PE PDB Code Injection buffers extracted WMI RWX flags setting unpack itself ComputerName DNS crashed		1	9.8		46	ZeroCERT