Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
14086	2023-04-17 17:58	office_sync.exe f2d9283406e628606230f215a7e9b833 UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution				2.2	M	34	ZeroCERT

14087	2023-04-17 17:54	소명자료 목록(국세징수법 시행규칙).zip... ba9a8b3329240f971c2a84212dc9ad73 ZIP Format							ZeroCERT

14088	2023-04-17 15:06	InstallerFilex_64.exe 78462baf56c10c4a1aee9dd38eb37bdc Aurora Stealer NPKI Generic Malware UPX Malicious Packer Malicious Library Antivirus OS Processor Check PE32 PE File Browser Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell suspicious privilege Check memory Checks debugger buffers extracted WMI Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process Ransomware Windows Browser ComputerName DNS Cryptographic key crashed		1		10.2		51	r0d

14089	2023-04-17 11:18	2-1_2023-04-14_09-11.exe 9f2d4ac2e67b3fe84ac5a8b6f7d6e6dd UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself				2.0	M	50	ZeroCERT

14090	2023-04-17 09:27	22귀속_부가가치세_면세사업자_사업장_현황신고.zip... 2b2310574eb43608eec2540782e08b35 ZIP Format VirusTotal Malware				0.8		21	ZeroCERT

14091	2023-04-17 09:25	22귀속 부가가치세 면세사업자 사업장 현황신고.hwp.... 2b2310574eb43608eec2540782e08b35 ZIP Format VirusTotal Malware				0.8		21	ZeroCERT

14092	2023-04-16 16:45	crys.suite.exe ca1c266f80e30187ad1436b3da5bea81 Generic Malware UPX Malicious Library Malicious Packer OS Processor Check PE64 PE File VirusTotal Malware				1.6	M	45	ZeroCERT

14093	2023-04-16 16:45	locacem2.1.exe 241b78d02640dea21e13c5bb27f3070c UPX Malicious Library PE File PE32 FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself suspicious TLD DNS	23 Keyword trend analysis Info http://www.lmteixeira.com/3ri5/?43a=YbXpO8f6Hib9Uwtv2jhOLkHCom129lz3fBKRMpd17kcGvqAlIYkukRc3MFx8Aiuw1xbqToM3oeO0mAyWHflUiRAu/nqisJ8AWi/NCRA=&Qj=eQQh6IAqOmK8K9Ot http://www.socialhundutbildning.com/3ri5/?43a=6fyh8NvGOALu1WTna1arX7cRTcJCaVezDnAB3SRdKno18i/IpLBv249NcS6xMQ5eVQU4L0x/+9B8EC80MEZinUr1wfqFxLl/6VdFhjA=&Qj=eQQh6IAqOmK8K9Ot http://www.whymart.info/3ri5/?43a=gg0WwMZJut98Pb9POX8BsR2tb4GvDHep0vhbybEGdeWO1wRcOh+rgMaB6OW+qqHzEPN/5qYCuQhy7THlnR0IkhmSzx7meYhwBzxXGxM=&Qj=eQQh6IAqOmK8K9Ot http://www.sqlite.org/2020/sqlite-dll-win32-x86-3320000.zip http://www.whymart.info/3ri5/ http://www.mrhaideri.xyz/3ri5/?43a=ng33xssushYrD1E++yuAaPoLG+XNDhmHsfNoSY6i5rDaNHDjFLB2dfvqjagzPxPXUhfa4r/kwA4ozZLVzFB0529cIF0+KvuBQ8UeUmA=&Qj=eQQh6IAqOmK8K9Ot http://www.bonniebathco.com/3ri5/?43a=m+9EiGOaRuotdr7HR1ai1gdt1GNDw1TmEpGkjtFtzc/dlwOBWFwqBGIyHAmZ6oV7v4zUEyUjENgsJ6+uFn07ZXodw4yIovvs9zaIw1Y=&Qj=eQQh6IAqOmK8K9Ot http://www.mrhaideri.xyz/3ri5/ http://www.virgocxexdc.com/3ri5/?43a=81Tz90LMokPE2E9026adtJbdEbByY5oL5tPN4TGnsToE3WZdLjOYAqIqxjS3dy9MhV3MfMDc0WPgBHiEtFDot2jRkWO3LpT059HFNzU=&Qj=eQQh6IAqOmK8K9Ot http://www.wormholeent.com/3ri5/?43a=GAeB9SO66wCu7XeOxUWjwQ3IXqr33QahFXqmZDAHjMk4F3Cn5yc7ZixTmnMJeZduFMM5t3USTT/RsQKU/fMUECl8s6zVBxGU3NlUJkM=&Qj=eQQh6IAqOmK8K9Ot http://www.diet-recipes.space/3ri5/ http://www.diet-recipes.space/3ri5/?43a=gAiYCkMh9HEWUQROjfER1pbHW334jo/FPGFqjrGyk6wUoRCDq6WjnIeXUfw70Q9BS5G10IzcyYkKsl0/bGzE82/BERVh2WOkHxwWlJk=&Qj=eQQh6IAqOmK8K9Ot http://www.shiyonggang.top/3ri5/ http://www.shiyonggang.top/3ri5/?43a=CR+qAR2Q1vfUJyJc4J7PIj4RcYiJUAVrPeBIKt6kUtE7XCq/28bBU4Yyt3KFKXKu7e/ZrDzbdKRDO1+3Ne4Ag9kKO6L7ev9eJYyBirY=&Qj=eQQh6IAqOmK8K9Ot http://www.293854.com/3ri5/?43a=8VfWc3I9T0q8uLWt5vMA8t/NaJjt99H5WpUIa33bhFXaN7+r5efgDAaDSWZ+OfLFop0DNHorEURjgXjwxWmjSn88pL4ptwdkA3+hAeE=&Qj=eQQh6IAqOmK8K9Ot http://www.virgocxexdc.com/3ri5/ http://www.lanmarconcreteomaha.com/3ri5/ http://www.brownstone.marketing/3ri5/?43a=v1a+ZoEzcRh50q2tDj03ofuTuK6dEashxWLebDlTotVYA45flfV1EPZtnjLTp8wtzJObZuW2CufgECU/vSOjQIa0l3HPVQyXyXUaHkE=&Qj=eQQh6IAqOmK8K9Ot http://www.lmteixeira.com/3ri5/ http://www.293854.com/3ri5/ http://www.bonniebathco.com/3ri5/ http://www.wormholeent.com/3ri5/ http://www.brownstone.marketing/3ri5/	26 Info www.socialhundutbildning.com(85.132.152.254) www.virgocxexdc.com(64.32.2.54) www.whymart.info(162.0.228.125) www.wormholeent.com(154.92.17.251) www.293854.com(122.10.13.104) www.brownstone.marketing(208.91.197.39) www.bonniebathco.com(213.171.195.105) www.diet-recipes.space(64.190.62.22) www.mrhaideri.xyz(185.55.227.138) www.lanmarconcreteomaha.com(147.154.0.23) www.lmteixeira.com(52.219.170.80) www.shiyonggang.top(43.243.74.83) 208.91.197.39 - mailcious 122.10.13.104 85.132.152.254 52.219.47.122 154.92.17.251 162.0.228.125 64.32.2.54 45.33.6.223 192.185.235.142 - mailcious 185.55.227.138 147.154.0.23 - mailcious 43.243.74.83 213.171.195.105 - mailcious 64.190.62.22 - mailcious	5	5.6	M	44	ZeroCERT

14094	2023-04-16 16:44	ss29 1a370e0c814e4444b9f0669ef7e92e3d Gen2 Gen1 Generic Malware UPX Malicious Library Malicious Packer PE64 PE File Browser Info Stealer VirusTotal Malware PDB MachineGuid unpack itself Check virtual network interfaces Tofsee Browser Remote Code Execution crashed	4 Keyword trend analysis	6	2	2.8	M	9	ZeroCERT

14095	2023-04-16 16:42	s.exe 4bf4ff505d264aff53bc0a885a6f5c8c UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself				1.8	M	34	ZeroCERT

14096	2023-04-16 16:40	pushmid.exe 9fede67b91a08de8cb9b0ee0cd6fed9a UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself				2.0	M	50	ZeroCERT

14097	2023-04-16 16:36	vdr.exe c06097200ce77e7d68dc2ca18b183096 Themida Packer PE64 PE File VirusTotal Malware unpack itself Windows crashed				3.4	M	30	ZeroCERT

14098	2023-04-16 16:34	s2s.exe 19b50e116e3708c663672d9c6e5a02f7 Keylogger Discord UPX Malicious Library Downloader Admin Tool (Sysinternals etc ...) MZP Format OS Processor Check PE File PE32 VirusTotal Malware MachineGuid Check memory Checks debugger buffers extracted unpack itself sandbox evasion anti-virtualization Windows Remote Code Execution DNS Cryptographic key crashed		2		7.6	M	42	ZeroCERT

14099	2023-04-16 16:31	update_v103.exe e30ecf9397dd0df9222d8b3011cd9816 UPX MPRESS PE64 PE File VirusTotal Malware Remote Code Execution crashed				2.6	M	49	ZeroCERT

14100	2023-04-16 16:30	build.exe 5bc8474304e8141a5e8e503c8e59a859 Generic Malware UPX Malicious Library Malicious Packer OS Processor Check PE64 PE File VirusTotal Malware				1.0	M	35	ZeroCERT