popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
22336 2022-12-13 17:27 asdas123.exe  

cb577d6fe5f956799ab1bad83468f083


Generic Malware Antivirus PE32 .NET EXE PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself suspicious process Windows ComputerName Cryptographic key Downloader 		10.0 M 31 ZeroCERT

22337 2022-12-13 17:27 setup.exe  

74ec11c582f37ac01c64d7d272e924fe


Malicious Library UPX PE32 OS Processor Check PE File VirusTotal Malware Buffer PE PDB Checks debugger buffers extracted unpack itself sandbox evasion ComputerName 		1 3.6 M 29 ZeroCERT

22338 2022-12-13 17:25 asda1243.exe  

6475c77020012b9f8a1743780a27d94c


Generic Malware Antivirus PE32 .NET EXE PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader 		1 2 3 10.0 M 26 ZeroCERT

22339 2022-12-13 17:24 fikik.exe  

3849bba366134a2553a6c1f77f2ad17b


Malicious Packer PE File PE64 VirusTotal Malware Tofsee crashed DoTNet 		2 3 1.8 M 23 ZeroCERT

22340 2022-12-13 17:23 asda1.exe  

f378a3e9b0e9cae2fa498cc0514a723c


Generic Malware Antivirus PE32 .NET EXE PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader 		1 2 3 10.0 M 27 ZeroCERT

22341 2022-12-13 17:22 HAD.exe  

9c6fe5f7657051af0b167d9d006a89ed


Malicious Library UPX PE32 OS Processor Check PE File VirusTotal Malware Buffer PE PDB Checks debugger buffers extracted unpack itself sandbox evasion ComputerName 		1 3.6 M 24 ZeroCERT

22342 2022-12-13 17:21 rstrthytuxjduxgf.exe  

f799facdb7eb292aa0ca75a7671c1eff


PWS[m] RAT email stealer Downloader UPX DNS Code injection KeyLogger Escalate priviledges persistence AntiDebug AntiVM PE32 .NET EXE PE File VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows crashed 		2 10.2 M 25 ZeroCERT

22343 2022-12-13 17:20 obs_updater91.exe  

af216e631d1a1b02568bcaed35fe5195


Malicious Library UPX AntiDebug AntiVM PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted WMI unpack itself Collect installed applications installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed 		1 11.6 M 29 ZeroCERT

22344 2022-12-13 17:18 new1.exe  

73b90c02a364195c72ea3587a5cb536b


Malicious Library UPX PE32 OS Processor Check PE File Buffer PE PDB Checks debugger buffers extracted unpack itself sandbox evasion ComputerName 		1 2.8 ZeroCERT

22345 2022-12-13 17:18 asdsa12.exe  

58c13bd65aa29d55ccfec3f7e8e99cb3


Generic Malware Antivirus PE32 .NET EXE PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader 		1 2 3 10.0 M 29 ZeroCERT

22346 2022-12-13 17:16 sikebnzi.exe  

ec6dac5f9a2a3140212b1c39b338107c


Generic Malware Antivirus PE32 .NET EXE PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader 		1 2 3 10.0 M 31 ZeroCERT

22347 2022-12-13 17:16 asdq22324.exe  

ccd8796070b10ebf3076f20b38dfb555


Generic Malware Antivirus PE32 .NET EXE PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process Windows ComputerName Cryptographic key Downloader 		10.0 M 26 ZeroCERT

22348 2022-12-13 17:15 mcland2.1.exe  

2b5f1f5cd70efed5a883ce05b9ce336a


Malicious Library UPX PE32 PE File FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files ICMP traffic unpack itself suspicious TLD 		3 6 2 5.0 M 28 ZeroCERT

22349 2022-12-13 17:14 hffte8hdd.exe  

28c6db012c15bc32696d7ca365f2ae6b


RedLine stealer[m] Malicious Library UPX AntiDebug AntiVM PE32 OS Processor Check PE File Browser Info Stealer FTP Client Info Stealer Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed 		1 9.4 ZeroCERT

22350 2022-12-13 17:14 BNSREveZbTkD.exe  

1f00638214824577f764026104668add


Malicious Library UPX PE32 OS Processor Check PE File VirusTotal Malware PDB Check memory 		1.6 M 28 ZeroCERT

keyword