2746 samples analysed
1000 / 2746 malicious
1167 / 2746 suspicious
579 / 2746 clean
C2 Countries :: Malware observatory
Sample types :: Submitted-overall
File types :: Submitted-overall
Samples :: Now-10
setup.exe 0.0
Engine-Analyzer-3.4-Install... 0.0
HIGHLY CONFIDENTIAL OF.docx 0.5
Bentley_Microstation_Powerd... 7.7
shit.exe 10.0
Malicious_OUT.vbs 10.0
SecureDocs.doc 10.0
manifest.{8B26BC7D-829D-435... 0.0
f_023d55 5.5
NOTIFICATION DE GAIN FONDA... 3.0
TLS Subjects :: Now-15
C=US, ST=California, L=Mountain ... 8
C=US, ST=California, L=Mountain ... 6
C=US, ST=California, L=Mountain ... 5
C=US, ST=WA, L=Redmond, O=Micros... 4
C=US, ST=WA, L=Redmond, O=Micros... 4
CN=*.vo.msecnd.net 3
C=US, ST=North Carolina, L=Salis... 3
C=US, unknown=94065, ST=CALIFORN... 2
C=US, ST=California, L=Mountain ... 2
C=US, ST=California, L=Mountain ... 2
serialNumber=I/NLylLN/RFXXDCnJI1... 2
C=--, ST=SomeState, L=SomeCity, ... 2
C=US, ST=California, L=San Jose,... 2
C=US, ST=California, L=Mountain ... 2
C=US, ST=Washington, L=Redmond, ... 2
TLS Versions
Http Methods
Callbacks :: Now-15
Malware :: Now-15
Locky 30
Nemucod 21
Duqu 21
Bitcoinminer 18
Bladabindi 17
Adware 12
Remvio 12
Fareit 11
Cerber 10
Upatre 10
Linux 10
Advml 9
Pwdump 6
Agent 6
Backdoor 6
DNS Requests :: Now-15
Alerts :: Now-15
ET POLICY PE EXE or DLL Windows file ...
ET POLICY Dropbox Client Broadcasting
SURICATA IPv4 invalid checksum
ET POLICY Outdated Windows Flash Vers...
ET POLICY Unsupported/Fake Windows NT...
ET TROJAN Java EXE Download by Vulner...
ET POLICY Java EXE Download
ET TROJAN Trojan Generic - POST To ga...
ET TROJAN Fareit/Pony Downloader Chec...
ET CURRENT_EVENTS DRIVEBY PDF Contain...
ET POLICY Unsupported/Fake Internet E...
ET POLICY Vulnerable Java Version 1.6...
ET TROJAN Generic - POST To .php w/Ex...
ET POLICY Windows 98 User-Agent Detec...
ET TROJAN Possible Zeus GameOver Conn...
Attack Categories :: Now-15
A Network Trojan was d...
Potential Corporate Pr...
Potentially Bad Traffic
Attempted User Privile...
Attempted Information ...
Misc Attack
Generic Protocol Comma...
Misc activity
Executable code was de...
Web Application Attack
Successful User Privil...
Attempted Administrato...