Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
1 2024-09-27 09:42 Programs.exe  

f39f62e3b4b6520c0eccae3d4e5879db


Generic Malware .NET framework(MSIL) PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself ComputerName
2.4 30 ZeroCERT

2 2023-12-25 23:49 IMG_7005_21603pdf.exe  

733a47d0689018b00e9017be3a92b4de


AgentTesla .NET framework(MSIL) UPX PWS SMTP KeyLogger AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed
1 6 6 15.4 55 guest

3 2023-05-09 18:27 test.exe  

a8f6a3eb27d8afa3aee2628739050bd5


PWS .NET framework RAT Downloader Create Service DGA Socket DNS Code injection HTTP PWS[m] Sniff Audio Steal credential Http API P2P Internet API Escalate priviledges FTP KeyLogger ScreenShot AntiDebug AntiVM .NET EXE PE32 PE File VirusTotal Malware AutoRuns Code Injection Check memory Checks debugger unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Ransomware Windows ComputerName
6.4 M 28 ZeroCERT

4 2023-03-29 17:50 1000+FacebookSPDogs-15pc.exe  

00b84d9dee2056758a6fbb07faef57d4


PWS .NET framework RAT .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.0 M 35 ZeroCERT

  • First
  • 1
  • Last
  • Total : 4cnts