Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Score	Zero	VT	Player
16	2025-04-28 10:14	namen.ps1 a96761c1e3bed0f2c2f8e2d616f60d40 Generic Malware Antivirus URL Format Malware download VirusTotal Malware VBScript powershell AutoRuns Malicious Traffic Check memory buffers extracted Creates executable files unpack itself Check virtual network interfaces WriteConsoleW Windows ComputerName DNS Cryptographic key Downloader	2 Keyword trend analysis	1	7 Info ET INFO Executable Download from dotted-quad Host ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile ET POLICY PE EXE or DLL Windows file download HTTP ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET INFO Dotted Quad Host VBS Request ET HUNTING PowerShell DownloadString Command Common In Powershell Stagers	6.4		14	ZeroCERT

17	2025-04-28 10:14	ret.exe 69f49a50e927c947f4cb26a03dc67285 task schedule PWS Code injection KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 DLL .NET DLL Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Check virtual network interfaces AppData folder Windows ComputerName DNS Cryptographic key crashed Downloader	1 Keyword trend analysis	1	5 Info ET INFO Executable Download from dotted-quad Host ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile ET POLICY PE EXE or DLL Windows file download HTTP ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response	13.2		50	ZeroCERT

18	2025-04-28 10:11	cred64.dll 6ad4e567657671704f787806f66f1a74 Generic Malware Malicious Library UPX Antivirus PE File PE64 DLL OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency PDB suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software		1		9.6		53	ZeroCERT

19	2025-04-28 09:29	BKWFHXXZ.msi badf5dd6b2a45be8fce0a7f1693c07de CAB MSOffice File VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName				2.2		3	ZeroCERT

20	2025-04-28 09:24	Men.exe dcee0a6be229f2a1df71c0ca1cf86df6 Generic Malware Malicious Packer Malicious Library UPX PE File PE64 VirusTotal Malware				3.0	M	44	ZeroCERT

21	2025-04-28 09:22	competive.exe bb16dde30b851185630ccdc3416b29b8 Gen1 Generic Malware Malicious Packer Malicious Library UPX PE File PE32 Browser Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency Buffer PE PDB suspicious privilege Check memory Checks debugger buffers extracted WMI unpack itself Check virtual network interfaces Ransomware Windows Browser ComputerName RCE DNS Cryptographic key		1		9.0		41	ZeroCERT

22	2025-04-28 09:22	chisel.exe b848f2f499d3c875506c755bd63ad4ec Generic Malware Malicious Packer Antivirus Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Check virtual network interfaces suspicious process Windows ComputerName DNS Cryptographic key		1		6.8		2	ZeroCERT

23	2025-04-28 09:21	applyreplace.exe 1f95d326d120d381a10f53596da3e30e Gen1 Generic Malware Malicious Packer Malicious Library UPX Antivirus PE File PE32 Malware download AsyncRAT NetWireRC VirusTotal Malware powershell Buffer PE PDB suspicious privilege Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote suspicious process AppData folder WriteConsoleW zgRAT Windows ComputerName RCE DNS Cryptographic key		1	4	8.6		43	ZeroCERT

24	2025-04-28 09:20	msf.exe 6afbdfc3d8d7fc1c167044ef34daf3b4 Metasploit Generic Malware PE File PE64 VirusTotal Malware				2.4	M	65	ZeroCERT

25	2025-04-28 09:14	client.exe acbde00860cedeafa0aaf1c643e5da34 Malicious Packer UPX PE File PE64 VirusTotal Malware suspicious process WriteConsoleW				2.2	M	54	ZeroCERT

26	2025-04-28 09:12	beacon.bin b24faa9c6e485219f062a61daa9b205d CobaltStrike Generic Malware Malicious Packer Malicious Library UPX PE File PE64 DLL OS Processor Check VirusTotal Malware Checks debugger unpack itself crashed				2.4	M	60	ZeroCERT

27	2025-04-28 09:10	ckuh.exe a2980062855e3ff75037425dfe2fa1fc Generic Malware Antivirus Malicious Library UPX AntiDebug AntiVM PE File PE64 OS Processor Check VirusTotal Malware powershell suspicious privilege MachineGuid Code Injection Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process Windows ComputerName Cryptographic key				6.4	M	26	ZeroCERT

28	2025-04-28 09:09	VisualCode.exe 9048722b3619d93180d5b39e7fade577 Gen1 Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware crashed				2.0		40	ZeroCERT

29	2025-04-28 09:08	1.exe 066983c36f15fa3d564e871381bcc7d4 Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware PDB RCE crashed				1.2	M	3	ZeroCERT

30	2025-04-28 09:06	WWLIB.dll c6dde31a037cbe64c608b053de821d5b Generic Malware Malicious Packer Malicious Library UPX PE File DLL PE32 OS Processor Check VirusTotal Malware Check memory unpack itself crashed				2.0	M	46	ZeroCERT