popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
3016 2025-01-30 19:43 rh_0-8_2025-01-23_15-05.exe  

4306fc8134a17b66deaed4f01d8317d9


Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware unpack itself 		2.0 M 56 ZeroCERT

3017 2025-01-30 19:41 newest.exe  

173883b31d172e5140f98fd0e927ff10


Generic Malware UPX PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Check memory Checks debugger Creates executable files unpack itself Windows utilities AppData folder WriteConsoleW Creates autorun.inf Windows 		5.2 M 57 ZeroCERT

3018 2025-01-30 19:39 setup_64.msi  

dd4d6b781b165e0df716190d686ceeb0


Generic Malware Malicious Library MSOffice File CAB OS Processor Check VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check ComputerName 		1 3 2.8 M 13 ZeroCERT

3019 2025-01-30 19:37 1.jar  

3e911add1db29c6820f7d67572cab68a


ZIP Format VirusTotal Malware Check memory heapspray unpack itself Java 		2.4 M 29 ZeroCERT

3020 2025-01-30 19:36 enai2.exe  

a2d2fc6108063a466264a34e7c46c8a3


njRAT backdoor PE File .NET EXE PE32 VirusTotal Malware WriteConsoleW 		2 3.0 M 64 ZeroCERT

3021 2025-01-30 19:35 BQEHIQAG.exe  

074ca842ea52396751bb6015979f2f79


Emotet Generic Malware Malicious Library Admin Tool (Sysinternals etc ...) UPX Malicious Packer PE File CAB PE32 OS Processor Check DLL MZP Format DllRegisterServer dll VirusTotal Malware PDB Check memory Checks debugger Creates executable files unpack itself 		3.6 M 51 ZeroCERT

3022 2025-01-30 19:34 lmao.exe  

942d7d99678d584c4481278378741d51


Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 M 64 ZeroCERT

3023 2025-01-30 19:34 discord.exe  

37eec0ec7f112d4f51ccea83c70e7572


Malicious Library Malicious Packer PE File .NET EXE PE32 Buffer PE AutoRuns suspicious privilege MachineGuid Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName 		8.8 M ZeroCERT

3024 2025-01-30 19:34 libery.dll  

655e4e9a4280e04ef71088581d2ee960


UPX PE File DLL PE64 OS Processor Check PDB 		0.2 M ZeroCERT

3025 2025-01-30 19:34 Java.exe  

f29f701e76e3a435acdd474a41fa60ba


Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself Java 		2.6 M 56 ZeroCERT

3026 2025-01-30 19:31 svchosts.exe  

097568748bb3dc42a29f6982d1fc4ac3


Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 M 55 ZeroCERT

3027 2025-01-30 19:30 cnct.exe  

cbc4f2b569739e02f228eb0b3552e6d4


njRAT backdoor Generic Malware PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself WriteConsoleW 		2 3.6 M 62 ZeroCERT

3028 2025-01-30 19:25 windriver.exe  

18b476d37244cb0b435d7b06912e9193


Malicious Library Malicious Packer PE File .NET EXE PE32 VirusTotal Malware Buffer PE AutoRuns suspicious privilege MachineGuid Check memory Checks debugger buffers extracted unpack itself human activity check Windows ComputerName DNS DDNS 		2 8.4 M 64 ZeroCERT

3029 2025-01-30 19:25 heo.exe  

feaca07182c6be327551ba4402a338c7


PE File .NET EXE PE32 Lnk Format GIF Format VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut Creates executable files unpack itself human activity check Windows ComputerName DNS DDNS 		1 5.2 M 60 ZeroCERT

3030 2025-01-30 19:23 fernardo.exe  

c983d66afb59220e9ab7e1be2e11eec7


Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 M 64 ZeroCERT

keyword