top title background image
Malware  Trends
flash

Detection Sample Info Download Report Classification & Info Graph
Clean
http://url320.highradiuscorp.com/ls/click?upn=u001.7wOrrPHhIXY1qSWx0TGwMQnQEAimwtN4hZIIKHxEiRbvOWNSsMrVOSxf4WYbe7GUECS2DozJZInshd6piYbG6DWZmQB617amZEGLkcpHXA-2Bc0m-2FLg7c9fRdHsMKv0tnZ3q-2Bl-2FKXrsuXrncc4FtRBcOJSxK-2BPejDVuIs6V4pdjtUWVPA0KHg4VnL1sV0yKg0rOJ-2BSIjJb9-2BoJdpPIKH29qJILzdpu3aTymFB4InwJcHdGNCZLNzFDVmm6NkBwHCQnZ7yq_3WO8QmSdoV8nPSjfwsjBXDFtxcmMMTBfqi67XhSeNm2eG59avuXEODiDzCmqe9a0bQlDLcnQKnbgWEQurXkXIP-2FYwNrQyKnU-2Bf9iN8pq-2B-2B2PnDMRptQRB-2Fe11odHV8wysDsk1czRscwQkPweHEjdnh-2F6IrVJPwYb8uhyDSHJLn0b-2BqnFAMK5VNLchdUlBfmoo-2B-2Blmq5m0sK3EZUoz405QOPouSBfJ2i5yXWGLHJDFOY-3D
2024-10-22 16:15:52 +02:00
Info
Malicious
AV: 0%
DataIndustrial.exe
2024-10-22 16:15:51 +02:00
Info
Class
Incomplete analysis
  • Sigma
AV: 0%
Yeti Hopper M20 Backpack Cooler Screwfix Exclusive Rewards.DOCX
2024-10-22 16:12:40 +02:00
No classification & info
Malicious
  • Yara
  • Suricata
LummaC
AV: 37%
file.exe
2024-10-22 16:10:09 +02:00
Info
Class
Malicious
  • Yara
  • Suricata
Stealc
AV: 45%
file.exe
2024-10-22 16:10:09 +02:00
Info
Class
Malicious
  • Sigma
AV: None
[EXTERNAL] Re_ Quotes.eml
2024-10-22 16:08:48 +02:00
Info
Malicious
  • Yara
Cuba, Latrodectus, UACMe, Xmrig
AV: None
https://www.elastic.co/security-labs/elevate-your-threat-hunting?utm_source=organic-social&utm_medium=twitter&utm_campaign=esl:_threat_research_esl_blog_post&utm_content=15000445268&linkId=626315843
2024-10-22 16:08:18 +02:00
Info
Class
Malicious
HTMLPhisher
AV: None
https://apeidieppe-d.basiic.net/yKKWd
2024-10-22 16:07:38 +02:00
Info
Class
Malicious
  • Yara
  • Sigma
FormBook
AV: 71%
Payment confirmaton copy.exe
2024-10-22 16:06:12 +02:00
Info
Class
Clean
https://us-west-2.protection.sophos.com/?d=xfinity.com&u=aHR0cHM6Ly9jbXAuY3dzLnhmaW5pdHkuY29tL3V0aWxpdHkvdHJhY2tpbmcvdHJhY2tpbmcvQ2xpY2tlZFVybD90YXJnZXRJZD1mZTNkZDE3MS1hMDc1LTRjM2MtYWE5NS03OWE1ZGZhODJjYThfbWlwXzEzMiZzZXJ2ZXJJZD1jM3BvJnRlbXBsYXRlSWQ9NzAyOWUzMDctOTMwNC00NWQ5LWJjZDEtNGZlNjk4ZTdlNDQ1JnRhcmdldFVybD1odHRwczovL2J1c2luZXNzLmNvbWNhc3QuY29tL2FjY291bnQvYmlsbD9DSUQ9RU1DLVRSLUJpbGxSZWFkeS1WaWV3U3RhdGVtZW50&i=NTljNTk1ZmQ4Zjg2MGMxNzM4NDBhZGNi&t=NmV1QzV1bkZJbUtHbkJnVjFOenp2L2NyenBsK0NuV3BCbnBNa0hVMGpTYz0=&h=41698bb3f89e4e30953996822e5fff5b&s=AVNPUEhUT0NFTkNSWVBUSVYvIpZHvF0h0chKAgPasAV-CzwOwWHUeJDSnsmZZPBRZ5hzqPY8-K6m2owVEfzReGk
2024-10-22 16:05:16 +02:00
Info
Malicious
  • Yara
FormBook, GuLoader
AV: 61%
Occipitomental.exe
2024-10-22 16:05:11 +02:00
Info
Class
Malicious
  • Yara
  • Suricata
RedLine
AV: 63%
PO-1BdyzarvrjUANe0.exe
2024-10-22 16:05:11 +02:00
Info
Class
Clean
https://asaporg-jobs.careerwebsite.com/
2024-10-22 16:04:16 +02:00
Info
Malicious
  • Yara
  • Sigma
  • Suricata
GuLoader, Snake Keylogger
AV: 42%
Sprawl.exe
2024-10-22 16:03:09 +02:00
Info
Class
Suspicious
  • Sigma
phish_alert_sp2_2.0.0.0 (14).eml
2024-10-22 16:02:49 +02:00
Info
Clean
https://gcmarketingplatform.blob.core.windows.net/dmp/102124_ARJS-5.1_Release/mescius_logo_style-c_rgb_white_2.png
2024-10-22 16:02:49 +02:00
Info
Suspicious
https://url3804.contact.mescius.com/ls/click?upn=u001.Zz0ZgmHzt7GrQzV1Q-2BEREzkHfO342-2BVo3sgrezd73wDbYRerX2Oj-2BHGy3k6C4rP4OX4PZiFMY-2BcI81NVS3dtn3JYhWDxVDvoWH6q1gdY7onvuNjuxaKJ8VQfDHII99lPJjDYQtkhbySsekGzrSg2LaoTt1mD-2FI3845Dd6DED8aE-3DdiM__U23Ps-2F8Rp-2FN8nKT-2BW6dS-2FQlYGLJeZyboJxR0aNrLzI87-2ByxGRE4GXweL-2B3xzjvR-2Bk8rxAnAbY0aH2nupiH7MP74AJa2-2BR2Hn8gly1vtspG464FDk-2BihevWGDCJgQJZ5RS2PVfgwk2RZVD3aFkwT7kQWJgCsBp9tR08EMP8CAOvc12LGgPCx6fFBBzIT1x9BtCP3fo-2FSzB0Sc2v77CFPYXbnzkjoNe5Lf5Zt8dCHpTz9Z10zN754byKoC-2BK8rEqXV
2024-10-22 16:02:49 +02:00
Info
Clean
https://fonts.googleapis.com/css?family=Open+Sans
2024-10-22 16:02:49 +02:00
Info
Malicious
  • Yara
  • Sigma
  • Suricata
GuLoader, Snake Keylogger
AV: 42%
Rundholterne89.exe
2024-10-22 16:02:08 +02:00
Info
Class
Malicious
  • Yara
  • Sigma
  • Suricata
FormBook, GuLoader
AV: 39%
Justificante.exe
2024-10-22 16:02:08 +02:00
Info
Class
Windows: InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available
Android: Receives SMS Sends SMS Reboot Native CMD
Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files Contains malware configuration(s)
Customization Show ID column