Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player
11986	2021-09-02 10:15	duck.lol 63335742301b2a2119f78653baa74637 Generic Malware Malicious Library PE File OS Processor Check PE32 Malware download VirusTotal Malware AutoRuns Malicious Traffic Checks debugger sandbox evasion Windows Browser DNS crashed	1 Keyword trend analysis	2	5		5.2	M	22	ZeroCERT

11987	2021-09-02 10:16	ohms.exe 8d5b808f4b0eb2f0c6e0e08d47e00ba6 PWS .NET framework Generic Malware Malicious Library AntiDebug AntiVM PE File .NET EXE PE32 FormBook Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key	6 Keyword trend analysis Info http://www.innercriticarchetypes.com/h388/?X2JtLLIP=WGbtjyk8ACG40Vbv3axfITHABpyyOvDogXO0RNplP5qU6u7fYcOsngz1g4xwRdD8lfE1nQDh&Bzu=UVW8MnVXhZQ8anr http://www.movievilla.info/h388/?X2JtLLIP=4NpIeChybLDwjUM2+1Xuv7U/hg7958duox/BY8cBDAlGJjjZLoz2p4I/0jyduLj2kNYrEyDi&Bzu=UVW8MnVXhZQ8anr http://www.diypoolpaint.sydney/h388/?X2JtLLIP=0eoKkXjtrLRlybQUhlKxjjLSefVHI6/WMzxLnyUNUXhjyMmUuRZAdN5xaliS8B3sVHAhuU5I&Bzu=UVW8MnVXhZQ8anr http://www.shab761.com/h388/?X2JtLLIP=e71i73sqMjv2JD7U8eZbkxlWtncnk4BsRt3c4xgIYCN8F5bmkFa+1l0Wm9sDlZhWqH3mHwlY&Bzu=UVW8MnVXhZQ8anr http://www.prepping.store/h388/?X2JtLLIP=sxj1nv4vMM1DeTYjX4virXwU1x6V8LUDbAkgzOA7LPsScPDLkSNpNAz3fVtexTsZTinrJKQP&Bzu=UVW8MnVXhZQ8anr http://www.in-a-best-world.net/h388/?X2JtLLIP=7GOqx6CU3HJ+gcxG3AzcCs1j6uWsYFJ4w+ZL+Pm0MtFYiA+uA7CmHEfaFhBPW1VYWEV8UQTy&Bzu=UVW8MnVXhZQ8anr	15 Info www.ccxtx.com() www.in-a-best-world.net(217.70.184.50) www.innercriticarchetypes.com(34.102.136.180) www.prepping.store(75.2.18.233) www.minldsrvlceacvtlvty.net() www.diypoolpaint.sydney(103.42.108.46) www.movievilla.info(99.81.40.78) www.etoilebusinessgroup.com() www.shab761.com(170.106.50.137) 99.81.40.78 - mailcious 34.102.136.180 - mailcious 217.70.184.50 - mailcious 103.42.108.46 75.2.18.233 - mailcious 170.106.50.137	1		7.6	M	17	ZeroCERT

11988	2021-09-02 10:17	Fafk.jpg 96827f1fe360ee7a1bd51e5059cc0809 VirusTotal Malware					0.6	M	12	ZeroCERT

11989	2021-09-02 10:18	stclient.dll 4865ff759e4cd979e67f2470b24272b6 Malicious Library Malicious Packer PE File DLL PE32 VirusTotal Malware unpack itself Windows crashed					2.2	M	18	ZeroCERT

11990	2021-09-02 10:20	kdiufiefd.exe cea347a30c840ed9c4e78ee28738cbd0 RAT PWS .NET framework Generic Malware Antivirus Downloader AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted WMI Creates shortcut ICMP traffic unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key crashed		4			11.8	M	31	ZeroCERT

11991	2021-09-02 10:20	hp8500at.dll dfc5fcf49e94d4ba61edbcf7021acd02 Malicious Library Malicious Packer PE File DLL PE32 VirusTotal Malware unpack itself Windows crashed					2.4	M	20	ZeroCERT

11992	2021-09-02 10:24	FileTracker.dll 367d76d749d9e45fa68a22d0034d98ae Malicious Library Malicious Packer PE File DLL PE32 VirusTotal Malware unpack itself Windows crashed					2.4	M	20	ZeroCERT

11993	2021-09-02 10:25	lv.exe 8da45d080c5badcb930d40689d1bb649 NPKI Gen1 Gen2 Generic Malware Malicious Library Anti_VM UPX Malicious Packer DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Hijack Network Internet API FTP ScreenShot Http API Steal credential Downloader P2P VirusTotal Malware Buffer PE Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities AppData folder malicious URLs Windows crashed		1			9.4	M	28	ZeroCERT

11994	2021-09-02 10:26	vbc.exe c8268fdcf0f3b3c81d61dc1a657e9e7f AutoIt UPX PE File PE32 VirusTotal Malware Check memory Checks debugger unpack itself					3.0	M	34	ZeroCERT

11995	2021-09-02 10:28	ACV.exe ee35165feed0bd0e639e3719015c6803 Generic Malware UPX PE File PE32 Malware download VirusTotal Malware AutoRuns Malicious Traffic Check memory RWX flags setting unpack itself suspicious process anti-virtualization Windows DNS keylogger	1 Keyword trend analysis	4	1	1	9.8	M	36	ZeroCERT

11996	2021-09-02 10:29	RW001Ext.dll 4b7c1f28c8454480f1e7fe4ec8688a71 Malicious Library Malicious Packer PE File DLL PE32 VirusTotal Malware unpack itself Windows crashed					2.2	M	17	ZeroCERT

11997	2021-09-02 11:11	file.exe 65ef67c7a0948a1235d18daac0499df8 Malicious Library PE File PE32 VirusTotal Malware PDB unpack itself Remote Code Execution					2.2	M	39	ZeroCERT

11998	2021-09-02 11:12	comctl32.dll 9534b02ad4eeec84c3ba61d0d964d705 Malicious Library Malicious Packer PE File DLL PE32 VirusTotal Malware unpack itself Windows crashed					2.2	M	17	ZeroCERT

11999	2021-09-02 11:15	ilk.exe 551034ce6f4665cebccbb79b2898f89a RAT Generic Malware Malicious Packer Antivirus PE File PE64 VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key					7.2	M	38	ZeroCERT

12000	2021-09-02 11:15	System.Runtime.Serialization.F... 277748a78e957077092c02412f230db8 Malicious Library Malicious Packer PE File DLL PE32 VirusTotal Malware unpack itself Windows crashed					2.2	M	17	ZeroCERT