Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
11206	2021-08-11 10:01	vbc.exe 158d07c37f56412ce5f16891448e7b65 RAT PWS .NET framework Gen2 Emotet Gen1 Formbook CryptBot Generic Malware NSIS UPX Malicious Library Admin Tool (Sysinternals etc ...) Malicious Packer Antivirus Anti_VM AntiDebug AntiVM PE File PE32 OS Processor Check .NET EXE FormBook Browser Info Stealer Malware download VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself Windows utilities Checks Bios Detects VirtualBox suspicious process AppData folder WriteConsoleW VMware anti-virtualization installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed	7 Keyword trend analysis Info http://www.magemutfak.com/b6cu/?9r4P2=Zpu4P68kNZXiC9zzvTuPbsld3Ho+TwI+n/8Z+x1909ORVtO1OWbnp1J3pdDQ09qd2uvqchNa&EjU4Sz=gdMTVRIPlB http://www.whizdomtowealth.com/b6cu/?9r4P2=WjPAXh0JYubKQSuUuSCFbEny3O8VuxfrPqKNQoPqg5IJ+LtGQnBlfQrfzBHE5mLPoToVPehd&EjU4Sz=gdMTVRIPlB http://www.xn--marketingrevolucin-61b.com/b6cu/?9r4P2=80ZGTxB/QLnIHkS3oVNq0ZJzfRpffLFocOm3eB+jN4m0j2EGAAjOfaPeawF6LJbltlmb2qM2&EjU4Sz=gdMTVRIPlB http://www.gobahis119.com/b6cu/?9r4P2=ruZ6cerXGD0yWecTiOU8HeUU0cRUEGerShblZmZFkrYahfnG07S/JtCKsaKAEdVecZbcrXhx&EjU4Sz=gdMTVRIPlB http://www.dollaroneshop.com/b6cu/?9r4P2=hphj0fSPebsUG4+TPU9kXIDabXbQWsVnKmp+Geflc4GVcaDo89Rdm4LDqBFd7omdrUO+Pnv9&EjU4Sz=gdMTVRIPlB http://www.mamafacil.com/b6cu/?9r4P2=ulZMiMAzIKxhCGouzIDoJ/Atu1WGElL9zoNZgIyVxCGswo8wIs4Bs3aWeOM7i+Qcx5tOIEpw&EjU4Sz=gdMTVRIPlB http://www.finopscert.com/b6cu/?9r4P2=XrfnOBkNkkBKgnbpDotVd9Wt38azE7kGf8JADJoXDG3y8ykdxWX2zrtWAHRCNr2g6Gs3kUui&EjU4Sz=gdMTVRIPlB	13 Info www.gobahis119.com(185.162.228.1) www.whizdomtowealth.com(34.102.136.180) www.finopscert.com(34.102.136.180) www.xn--marketingrevolucin-61b.com(192.254.187.234) www.magemutfak.com(104.161.87.37) www.dollaroneshop.com(185.163.46.131) www.mamafacil.com(34.102.136.180) 45.141.152.18 - malware 104.161.87.37 192.254.187.234 34.102.136.180 - mailcious 185.163.46.131 - malware 185.162.228.1	1	18.2	M	60	ZeroCERT

11207	2021-08-11 10:05	RDPWInst.exe 3288c284561055044c489567fd630ac2 Gen2 Gen1 UPX Malicious Packer Malicious Library OS Processor Check PE File PE32 VirusTotal Malware WriteConsoleW				1.6	M	45	ZeroCERT

11208	2021-08-11 10:14	termsrv.dll 780512970b44c32a56044aeff90bf838 Gen2 Gen1 UPX Malicious Packer Malicious Library PE64 DLL PE File PDB Check memory unpack itself suspicious process Remote Code Execution crashed				1.8			ZeroCERT

11209	2021-08-11 10:15	pwT9QYNhI0gG4M 3a0b8a28eb7ec8f7fd012fe96511089a Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11210	2021-08-11 10:16	kk.ps1 076e5f15c5204b3e7b9feb23dc00d237 Anti_VM Antivirus VirusTotal Malware Check memory unpack itself WriteConsoleW Windows Cryptographic key				1.6		16	ZeroCERT

11211	2021-08-11 10:17	Q3l0mhdx d441ab85052ff351dfb748273d6787f3 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11212	2021-08-11 10:18	0tFJSvyem78p 40f848d31317088fd33d1941067feab0 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11213	2021-08-11 10:20	ckPikiDV 75e20dc89605053fc171aec4fce88191 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11214	2021-08-11 10:20	222222.vbs 424085315ca9018d431fd693e72bfa64 VirusTotal Malware VBScript AutoRuns wscript.exe payload download Windows utilities suspicious process WriteConsoleW Windows ComputerName DNS DDNS Dropper		2		10.0	M	26	ZeroCERT

11215	2021-08-11 10:22	poZ0nrmNh9u 253db300eeb0056409bbce494ccf6c6b Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11216	2021-08-11 10:23	0dqq0YRVz 397bb99717b7e0e1db7b1540d25aa650 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11217	2021-08-11 10:24	v0xmQytCLAPezxO 0f31b552416a9935b63aca1bb983e96b Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11218	2021-08-11 10:26	BBRhE9tEKq 87cbf4a86708b610efe3b537ddd5a5e0 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11219	2021-08-11 10:29	JZs5PqMAq abcd03038ea24ddbe1e4ecd09c5105a7 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT

11220	2021-08-11 10:31	vX4ZeGMJwitvE4 677b2858e7de9d7f9b6d797cc0a4f147 Generic Malware Malicious Library DLL PE File PE32 Windows crashed				1.2	M		ZeroCERT