popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
17086 2023-05-17 09:52 w.vbs  

9e6396c0f6372ad9dabf49ac46c37b19


Malware download Wshrat NetWireRC VirusTotal Malware VBScript AutoRuns WMI wscript.exe payload download AntiVM_Disk VM Disk Size Check Windows Houdini ComputerName DNS DDNS Dropper 		1 2 4 1 10.0 M 26 ZeroCERT

17087 2023-05-17 09:50 w.vbs  

9e6396c0f6372ad9dabf49ac46c37b19


Malware download Wshrat NetWireRC VirusTotal Malware VBScript AutoRuns WMI wscript.exe payload download AntiVM_Disk VM Disk Size Check Windows Houdini ComputerName DNS DDNS Dropper 		1 2 4 1 10.0 M 26 ZeroCERT

17088 2023-05-17 09:34 csrsv.exe  

13c6b003e4cd8319299a50a51e14a222


Ave Maria WARZONE RAT UPX Malicious Library Malicious Packer Admin Tool (Sysinternals etc ...) OS Processor Check PE File PE32 JPEG Format DLL PE64 Malware download Amadey VirusTotal Malware AutoRuns PDB Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW installed browsers check Windows Browser ComputerName DNS crashed 		2 1 4 9.8 M 41 ZeroCERT

17089 2023-05-17 09:34 AtomLdr.dll  

513eecac1e602be2a404f1d70719dffb


DLL PE64 PE File VirusTotal Malware Checks debugger 		1.2 M 17 ZeroCERT

17090 2023-05-17 09:28 MSPlayer.ps1  

1df2d060ffe4c74396b26c9295769ffd


Generic Malware Antivirus Check memory unpack itself 		0.6 ZeroCERT

17091 2023-05-17 09:23 doc.pdf  

9a95e059d574d4c3bdd26627308e22b6


PDF ZIP Format Windows utilities Windows 		5 1.4 ZeroCERT

17092 2023-05-17 09:22 AtomLdr.dll  

513eecac1e602be2a404f1d70719dffb


DLL PE64 PE File VirusTotal Malware Checks debugger unpack itself 		1.6 17 ZeroCERT

17093 2023-05-17 09:17 clip64.dll  

fb32ce419c5bea931a9e3c4ad70dec00


UPX Malicious Library Admin Tool (Sysinternals etc ...) OS Processor Check DLL PE File PE32 VirusTotal Malware PDB Checks debugger unpack itself DNS 		3.6 M 54 ZeroCERT

17094 2023-05-17 09:17 Kexvdkz.js  

00e1e1bdc90fa90a8cf9524f06ebbbd7


Generic Malware Admin Tool (Sysinternals etc ...) Antivirus Hide_URL AntiDebug AntiVM PowerShell powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut unpack itself suspicious process Windows ComputerName Cryptographic key 		1 6.2 ZeroCERT

17095 2023-05-17 09:17 Lozrnlwd.js  

9fc5685eb5f6fcf8dd0cf7d998a86d32


Generic Malware Antivirus Hide_URL AntiDebug AntiVM PowerShell powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut unpack itself suspicious process Windows ComputerName Cryptographic key 		1 6.2 ZeroCERT

17096 2023-05-17 09:15 run.exe  

5e7b16cbe19f279b1f336a0db3d5f0d3


AntiDebug AntiVM MSOffice File Code Injection ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed 		5 2 6.0 M ZeroCERT

17097 2023-05-17 09:14 vbc.exe  

bc8dfcb4093f0bb356e3103af15f3d1b


Raccoon Stealer Generic Malware UPX PWS[m] ScreenShot AntiDebug AntiVM PE File PE32 VirusTotal Malware Buffer PE Code Injection buffers extracted RWX flags setting unpack itself malicious URLs Windows RCE crashed 		8.0 M 45 ZeroCERT

17098 2023-05-17 09:11 new123.exe  

811e93471760add998aa98ad4bd328da


Generic Malware UPX Malicious Library AntiDebug AntiVM PE64 PE File DLL VirusTotal Malware Buffer PE AutoRuns PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Advertising DNS Cryptographic key crashed 		10.2 M 22 ZeroCERT

17099 2023-05-17 09:09 build_230513_103126.exe  

3a90a970a0965041a25f6c996c142011


AntiDebug AntiVM MSOffice File Code Injection ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed 		5 2 6.0 M ZeroCERT

17100 2023-05-17 09:06 blessedzx.exe  

0b94975f5dde6feab979853991933616


PWS .NET framework Anti_VM .NET EXE PE File PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself 		2.0 14 ZeroCERT

keyword