Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Hosts	IDS	Score	Zero	VT	Player
1	2025-04-22 11:58	pOqYWAZ.exe 8c2df7e94aecf922bac33303693edc40 RedLine stealer XMRig Miner RedlineStealer Generic Malware Downloader Malicious Library UPX Antivirus Malicious Packer .NET framework(MSIL) Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code i Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Cryptocurrency Miner Malware powershell Microsoft AutoRuns PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Collect installed applications Auto service Check virtual network interfaces suspicious process AppData folder WriteConsoleW installed browsers check Stealer Windows Browser ComputerName RCE Firmware DNS Cryptographic key Software crashed CoinMiner	3	6 Info ET INFO Microsoft net.tcp Connection Initialization Activity ET MALWARE Redline Stealer TCP CnC Activity ET MALWARE [ANY.RUN] RedLine Stealer/MetaStealer Family Related (MC-NMF Authorization) ET MALWARE Redline Stealer TCP CnC - Id1Response ET COINMINER CoinMiner Domain in DNS Lookup (pool .hashvault .pro) ET MALWARE Redline Stealer/MetaStealer Family Activity (Response)	15.8		46	ZeroCERT

2	2025-04-21 12:59	p5Y.exe a46162741688447617541413f382c39e Gen1 Generic Malware Malicious Library UPX AntiDebug AntiVM PE File PE32 OS Processor Check .NET EXE VirusTotal Malware PDB MachineGuid Code Injection Check memory Checks debugger Creates executable files unpack itself WriteConsoleW RCE			6.4	M	52	ZeroCERT

3	2025-03-31 12:24	OOBebroker.exe c6e4d3fbc193ee034b6ce5b9d2c887b8 Generic Malware Downloader Malicious Library .NET framework(MSIL) UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM PE File PE32 VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process WriteConsoleW Windows RCE			7.8	M	52	ZeroCERT

4	2025-03-19 11:13	rau.exe 781594d116452f67c3a9e1cbdc4a2d7c Gen1 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check DLL VirusTotal Malware PDB Creates executable files unpack itself AppData folder RCE			3.0		43	ZeroCERT

5	2025-02-19 12:01	1243.exe 0a736eeb2a65ab14079363292764e5f2 Generic Malware Malicious Library .NET framework(MSIL) UPX AntiDebug AntiVM PE File PE32 OS Processor Check .NET EXE PDB Code Injection Creates executable files unpack itself RCE			2.8			ZeroCERT

6	2025-02-19 11:33	1358.exe a060b37c0ef63cafec92efde7fc6eeb9 Generic Malware Malicious Library .NET framework(MSIL) UPX ScreenShot Escalate priviledges Code injection AntiDebug AntiVM PE File PE32 OS Processor Check .NET EXE PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself Windows utilities suspicious process WriteConsoleW Windows RCE DNS	1		8.2			ZeroCERT

7	2025-02-19 10:49	Okfgjrg5d8gt a07b7ca47de7e03b3f4ee5d8468ba8da Generic Malware Malicious Library .NET framework(MSIL) UPX Antivirus PE File PE64 OS Processor Check PowerShell .NET EXE PE32 Cryptocurrency Miner Cryptocurrency powershell AutoRuns PDB suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName RCE Cryptographic key crashed BitCoinMiner CoinMiner	2	1	8.6			ZeroCERT

8	2025-02-19 10:45	JHiuhe2rg7tds 3b1bf937711e0b1f3b6e455d535cc4f0 Generic Malware Malicious Library UPX .NET framework(MSIL) PE File PE64 OS Processor Check PowerShell .NET EXE PE32 Cryptocurrency Miner Cryptocurrency powershell AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows RCE DNS crashed BitCoinMiner CoinMiner	3	1	7.4			ZeroCERT

9	2025-02-07 14:17	stealc.exe d38779b089440ccd9ca6120468528940 Emotet Generic Malware Malicious Library WinRAR UPX ASPack PE File PE64 OS Processor Check DLL PE32 MZP Format ftp DllRegisterServer dll VirusTotal Malware PDB Creates executable files unpack itself AppData folder RCE			3.2	M	9	ZeroCERT

10	2024-12-30 14:07	boost.exe 3afbec336ce14a69efb9524e4228fa0b Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware PDB Check memory RWX flags setting unpack itself RCE			2.0		4	ZeroCERT

11	2024-12-18 16:19	av.exe c5ca67c0bbc8b248cea971121e96e93d Gen1 Generic Malware PhysicalDrive Downloader Malicious Library WinRAR UPX Malicious Packer Antivirus Confuser .NET Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API pe VirusTotal Malware powershell PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger WMI Creates shortcut Creates executable files unpack itself Windows utilities Disables Windows Security powershell.exe wrote suspicious process AppData folder WriteConsoleW installed browsers check Windows Browser ComputerName RCE Cryptographic key crashed			15.6		40	ZeroCERT

12	2024-10-30 09:31	m.dat f6814a59c53218b84eb943ef07fcb74c Gen1 XMRig Miner Generic Malware Malicious Library UPX Malicious Packer Antivirus AntiDebug AntiVM PE File PE64 OS Processor Check VirusTotal Malware AutoRuns PDB MachineGuid Code Injection Creates executable files unpack itself Windows utilities Auto service suspicious TLD WriteConsoleW Firewall state off Windows RCE DNS	2	1	10.2		53	ZeroCERT

13	2024-10-26 11:14	random.exe 17f5a1ae03a0ff4eb038527de02e8860 Emotet Gen1 Generic Malware Malicious Library UPX Admin Tool (Sysinternals etc ...) Malicious Packer Antivirus Anti_VM PE File PE32 OS Processor Check DLL VirusTotal Malware PDB suspicious privilege Checks debugger WMI Creates executable files unpack itself ComputerName RCE DNS	2		7.6		39	ZeroCERT

14	2024-10-14 10:53	rbx.exe abfe9c702641bda679c3947a9bbde15f Generic Malware Malicious Library WinRAR UPX .NET framework(MSIL) PE File PE64 OS Processor Check .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger Creates executable files unpack itself AppData folder WriteConsoleW RCE			4.0		37	ZeroCERT

15	2024-09-30 17:14	FissionBabyV242.exe 884f0f7907c7a94130294f499bfc1775 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Check memory RWX flags setting RCE			3.2		41	ZeroCERT