Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
14101	2023-04-16 16:25	troubled_projects.exe fd72f009bcbf63c9586becb726402280 UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself Remote Code Execution DNS		1		2.4	M	56	ZeroCERT

14102	2023-04-16 16:24	dcrossw.exe caea33e0d520c8a783732de2634c1017 UPX Malicious Library PE File PE32 Malware download Remcos VirusTotal Malware AutoRuns Malicious Traffic Check memory Checks debugger Creates executable files unpack itself AppData folder WriteConsoleW Windows DNS DDNS	1 Keyword trend analysis	4	4	6.0	M	46	ZeroCERT

14103	2023-04-16 16:22	113.exe 9a75a6d3afd26306f563d96dc2517225 Gen1 Emotet PWS .NET framework RAT Malicious Library CAB PE File PE32 .NET EXE VirusTotal Malware AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces AppData folder AntiVM_Disk VM Disk Size Check Tofsee Windows Remote Code Execution		2	2	4.6	M	42	ZeroCERT

14104	2023-04-16 16:22	114.exe dd0379a70a71b60b3a81a91d49c88648 RedLine stealer[m] NPKI Generic Malware Themida Packer UPX Malicious Library AntiDebug AntiVM OS Processor Check PE File PE32 icon Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Buffer PE PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files exploit crash unpack itself Checks Bios Collect installed applications Detects VirtualBox Detects VMWare Check virtual network interfaces VMware anti-virtualization installed browsers check Windows Exploit Browser ComputerName Remote Code Execution Firmware DNS Cryptographic key Software crashed		2		20.4	M	48	ZeroCERT

14105	2023-04-16 16:21	Acx_w01.exe 9b329956bf938c36fe12b1524eff3be0 Emotet Generic Malware Malicious Library Malicious Packer Antivirus PE64 PE File DLL VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Auto service powershell.exe wrote suspicious process Windows ComputerName DNS Cryptographic key crashed	1 Keyword trend analysis	1		10.8	M	29	ZeroCERT

14106	2023-04-16 16:20	build-0x739.exe 59f7602b250387b31bfc481f3efb9517 Generic Malware UPX Malicious Library Malicious Packer Antivirus OS Processor Check PE64 PE File VirusTotal Malware				1.2	M	43	ZeroCERT

14107	2023-04-16 16:20	41231.exe b572fd75f4e8bedd4c0fd500e76f32db AntiDebug AntiVM MSOffice File Code Injection ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		5	2	6.0	M		ZeroCERT

14108	2023-04-16 16:16	001.exe 5079a574e95863dcac4206efca348b15 Malicious Library PE64 PE File VirusTotal Malware Checks debugger crashed				2.0	M	43	ZeroCERT

14109	2023-04-16 16:15	index.php 99d09bbf9eb3ea2864f7b540090ca89d UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself				1.6	M	21	ZeroCERT

14110	2023-04-16 08:56	Software.3.2.exe 6bd02e751b2b2033e163645d2d818ea0 PWS .NET framework RAT .NET EXE PE File PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself Check virtual network interfaces suspicious TLD Tofsee ComputerName		2	1	3.8		46	ZeroCERT

14111	2023-04-16 08:55	kiskis.exe ae2ee76a62c4208b7bfb858cbce6a07e Themida Packer PE64 PE File VirusTotal Malware unpack itself Windows crashed				3.2		24	ZeroCERT

14112	2023-04-14 22:26	AllSignatures.plist bbf1e97143f061f2ab2d3ea27ff68da8 AntiDebug AntiVM Email Client Info Stealer suspicious privilege Checks debugger Creates shortcut unpack itself installed browsers check Browser Email ComputerName				3.4			BRY

14113	2023-04-14 18:10	davidfc.exe 77ad6e3ff909ad3828bdcffd4720deac RAT KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process malicious URLs IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger	2 Keyword trend analysis	6	3	16.0	M	43	ZeroCERT

14114	2023-04-14 18:07	37836632498586869767.bin 5e1360b5ee1d7978a48bf7892291d7d4 Gen1 UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware RWX flags setting unpack itself Windows utilities WriteConsoleW Windows ComputerName crashed				4.0	M	47	ZeroCERT

14115	2023-04-14 18:07	74134271465999811757.bin 8c8f6bd95d195dc90693368e807e4044 Gen1 UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself Windows utilities WriteConsoleW Windows ComputerName crashed				3.6	M	52	ZeroCERT