popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
2206 2025-02-05 10:59 invoice.exe  

89c214d27ab5a2c0ce921b7c6794cbd8


njRAT backdoor Generic Malware Malicious Library Antivirus UPX PE File MSOffice File CAB PE32 OS Name Check OS Processor Check DLL VirusTotal Malware PDB suspicious privilege Check memory Checks debugger Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check Windows ComputerName RCE Cryptographic key 		2 5.0 24 ZeroCERT

2207 2025-02-05 02:13 CShield.dll  

db5198ea4d04bad9c91dc04ba2033579


Malicious Library PE File DLL PE32 VirusTotal Malware Check memory crashed 		1.8 M 26 guest

2208 2025-02-05 00:51 CShield.dll  

db5198ea4d04bad9c91dc04ba2033579


Malicious Library PE File DLL PE32 VirusTotal Malware 		1.4 M 26 guest

2209 2025-02-03 13:08 suwce.exe  

bec536220cd7d3a6e449502f08273664


Process Kill Generic Malware Malicious Library FindFirstVolume CryptGenKey UPX PE File Device_File_Check PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Telegram suspicious privilege Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger 		2 6 9 9.4 M 49 ZeroCERT

2210 2025-02-03 13:06 update.exe  

c137e1ba3d33f2bc7bc6d43fbfdd2d3e


Generic Malware Malicious Library Malicious Packer Antivirus PE File PE64 Emotet VirusTotal Malware Buffer PE AutoRuns MachineGuid Code Injection buffers extracted unpack itself sandbox evasion Windows 		6.2 M 36 ZeroCERT

2211 2025-02-03 13:04 setup315.msi  

45a56a51bffca8d36b068af78dbc6aa6


Generic Malware Malicious Library MSOffice File CAB OS Processor Check VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName 		1 2 1 2.6 M 26 ZeroCERT

2212 2025-02-03 13:03 nvc.exe  

240a6e1f4217e3eb22db88dc0692b5f7


Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware AutoRuns Checks debugger Windows 		3.4 M 52 ZeroCERT

2213 2025-02-03 13:03 ImageEditorforWP.exe  

3fd8e54afc2f9019e0274702c61733ee


Malicious Library UPX PE File PE32 MZP Format unpack itself crashed 		1.4 M ZeroCERT

2214 2025-02-03 13:01 random.exe  

e24ddc37faf2826b3f531a82b345cdcf


Themida Admin Tool (Sysinternals etc ...) UPX Anti_VM PE File PE32 VirusTotal Malware Checks debugger unpack itself Checks Bios Detects VMWare VMware anti-virtualization Windows crashed 		5.4 M 40 ZeroCERT

2215 2025-02-03 13:01 inst.exe  

b78291a2e93ae3359bf71e2f3f19fc40


Malicious Library AntiDebug AntiVM PE File PE64 VirusTotal Malware Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Checks Bios anti-virtualization Windows Firmware DNS Cryptographic key crashed 		1 1 10.2 M 59 ZeroCERT

2216 2025-02-03 12:58 w2.vbs  

2046724c0db73a129eac13077dbe5c37


Hide_EXE [C] All Process Generic Malware Suspicious_Script_Bin Antivirus AntiDebug AntiVM OS Processor Check VirusTotal Malware VBScript powershell suspicious privilege Code Injection Check memory Checks debugger WMI wscript.exe payload download Creates shortcut Creates executable files unpack itself powershell.exe wrote suspicious process WriteConsoleW Tofsee Windows ComputerName DNS Cryptographic key Dropper 		1 2 4 10.0 12 ZeroCERT

2217 2025-02-03 12:55 ekrn.exe  

69a343128ac43a80fa75b0e00650822b


PE File 		ZeroCERT

2218 2025-02-03 10:40 setup.msi  

d192d614bff7e4d9de58ea2e1d0669c3


Generic Malware Malicious Library MSOffice File CAB OS Processor Check VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName 		1 13 2.6 27 ZeroCERT

2219 2025-02-03 10:39 4.exe  

6b05bb6cf69f48a3902f5beb0de80bc8


Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE 		2.2 54 ZeroCERT

2220 2025-02-03 10:37 2.exe  

712ad2871de1468749729ac94f8d9587


Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB Checks debugger RCE 		2.6 54 ZeroCERT

keyword