popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
1 2024-10-20 10:22 shell_reverse_msf_encoded_embe...  

c23d75e9e8ad5d82bdec4103543caec5


Malicious Library UPX PE File PE32 VirusTotal Malware unpack itself 		3.0 M 60 ZeroCERT

2 2024-08-06 09:12 systems.exe  

168fd1d2a0af4fdaa019f351fd03204d


Generic Malware Malicious Library UPX PE File PE64 OS Processor Check FTP Client Info Stealer VirusTotal Malware Software 		1.2 M 2 ZeroCERT

3 2024-04-12 08:41 04_Mtkfarukc.exe  

3e2f66f617318069be60fe1c16ecdfd6


.NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware 		1.2 M 50 guest

4 2024-03-27 07:43 Cvdnacb.exe  

50e198816a25e6ceeaf4174413b7d1b3


.NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Discord DNS 		2 3 2.8 M 54 ZeroCERT

5 2024-03-27 07:41 Mtkfarukc.exe  

3e2f66f617318069be60fe1c16ecdfd6


.NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Discord DNS 		2 3 2.4 M 52 ZeroCERT

6 2023-11-30 07:15 hjk.exe  

95ee9a372c00b4fbb86fc4cab7af8739


Generic Malware Malicious Library UPX PWS SMTP DNS AntiDebug AntiVM PE File PE64 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName Cryptographic key 		8.4 M 36 ZeroCERT

7 2023-11-30 07:09 eta.exe  

d96ad0c55fdda0eedebc56b4a2f1d3b8


Generic Malware Malicious Library UPX PWS SMTP DNS AntiDebug AntiVM PE File PE64 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key 		7.8 36 ZeroCERT

8 2023-11-05 12:34 plink.exe  

7e559dc4e162f6aaee6a034fa2d9c838


Malicious Library PE File PE32 FTP Client Info Stealer WriteConsoleW DNS Software 		1 1.4 ZeroCERT

9 2023-10-10 18:25 putty.exe  

1d5ad4a60ec9be32c11ad99f234bfe8f


Malicious Library UPX PE File PE64 OS Processor Check FTP Client Info Stealer VirusTotal Malware Check memory Checks debugger unpack itself Software 		3.0 38 ZeroCERT

10 2023-06-21 15:55 3.exe  

68749e1f05472d28f9aead6c393da9d2


Schwerer UPX PE File PE32 Browser Info Stealer VirusTotal Email Client Info Stealer Malware Check memory Checks debugger Creates executable files unpack itself suspicious process AppData folder AntiVM_Disk sandbox evasion VM Disk Size Check Browser Email ComputerName 		6.8 34 ZeroCERT

11 2022-12-10 15:07 Emit64.exe  

7a5155b804e592d83f8319cbdb27e164


Malicious Library PE File PE64 VirusTotal Malware 		1.6 M 31 ZeroCERT

12 2022-08-18 17:32 final00.exe  

a20fe7a245e150d07856bf04fb89ab23


RAT Generic Malware task schedule UPX Antivirus Malicious Packer AntiDebug AntiVM PE32 PE File .NET EXE VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder WriteConsoleW Tofsee Windows Discord ComputerName DNS Cryptographic key 		2 6 3 18.2 M 56 ZeroCERT

13 2022-06-25 17:57 mmgaserver.exe  

67bd7555d34340be8ba5ce07489332ae


RAT PE File PE64 VirusTotal Malware MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted ICMP traffic unpack itself Check virtual network interfaces 		1 4 4.4 33 ZeroCERT

14 2022-06-07 11:43 putty.exe  

6fa14b3b1c54a26f0b9bbcd2f6b45899


PWS Loki[b] Loki.m UPX Malicious Library OS Processor Check PE File PE64 Check memory Checks debugger unpack itself Remote Code Execution 		1.6 M guest

15 2022-05-01 13:50 putty.exe  

6fa14b3b1c54a26f0b9bbcd2f6b45899


PWS Loki[b] Loki.m UPX Malicious Library OS Processor Check PE File PE64 Check memory Checks debugger unpack itself Remote Code Execution 		1.6 M 조광섭

keyword