Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	VT	Player
14056	2021-10-26 14:52	M0031.cab 871ce47086d35b0a8e9ee166c1705a3b KeyLogger Escalate priviledges AntiDebug AntiVM suspicious privilege Check memory Checks debugger				1.2		ZeroCERT

14057	2021-10-26 14:53	FORM_PIX EYMVDUI.msi f2836216ca554dfdc8a300decb644911 Gen2 Generic Malware Malicious Packer Malicious Library OS Processor Check MSOffice File VirusTotal Malware unpack itself crashed				1.4	21	ZeroCERT

14058	2021-10-26 14:57	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				2.8	23	ZeroCERT

14059	2021-10-26 15:01	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				2.8	23	ZeroCERT

14060	2021-10-26 15:05	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware MSOffice File VirusTotal Malware unpack itself				1.2	23	guest

14061	2021-10-26 15:06	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself DNS		1		3.4	23	guest

14062	2021-10-26 15:21	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				2.8	23	ZeroCERT

14063	2021-10-26 15:27	Sample_10120351200_ISO_035117i... 0d20e6334179eeadad75c218d0d9dca2 RAT Generic Malware SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	3	15.0	25	ZeroCERT

14064	2021-10-26 16:25	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				2.8	23	guest

14065	2021-10-26 17:24	DHL-Fattura-446732-9302.xls 2172d539dfc31f78f87363c9837fc788 VBA_macro Generic Malware KeyLogger ScreenShot AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection unpack itself				2.8	24	guest

14066	2021-10-26 17:40	13937710524.pdf 74307be28a2e9a0a21dab1fcc2ad2736 PDF Suspicious Link PDF VirusTotal Malware Windows utilities Windows	5 Keyword trend analysis Info http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/277_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/280_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/message.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/278_20_6_20042.zip http://acroipm2.adobe.com/20/rdr/ENU/win/nooem/none/consumer/281_20_6_20042.zip			2.0	16	ZeroCERT

14067	2021-10-26 17:57	1607e659fd69a9---zemoxoxasu.pd... 3caef62c45bde425fbd43405f44814d8 PDF Suspicious Link PDF VirusTotal Malware				0.6	17	ZeroCERT

14068	2021-10-26 17:58	16076ca0ccb4a8---seretopodiguk... 91ab78a2a22826dfb07d7545c6c7c872 PDF Suspicious Link PDF VirusTotal Malware				0.6	16	ZeroCERT

14069	2021-10-26 18:02	windefender_1.4.exe b50ffa06eca2b3a4d92562561fc6b2d1 Gen2 Generic Malware Malicious Library UPX Malicious Packer PE File PE32 OS Processor Check MSOffice File VirusTotal Malware suspicious privilege Check memory Creates executable files unpack itself AntiVM_Disk VM Disk Size Check Trojan				3.2	19	ZeroCERT

14070	2021-10-26 18:16	qwertusjvghjxbwhgvsafeaf.exe 30a6f72c252425e28dbfd7c071ab0198 RAT Generic Malware Malicious Packer UPX PE64 PE File VirusTotal Malware AutoRuns suspicious privilege MachineGuid Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process Windows ComputerName				5.8	38	ZeroCERT