popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
35311 2022-01-19 14:00 hBDR  

cbca79a4616d16f43d38d6da4e424e81


Malicious Packer Malicious Library UPX PE File OS Processor Check PE32 DLL VirusTotal Malware Checks debugger ICMP traffic RWX flags setting unpack itself sandbox evasion ComputerName DNS 		13 6.4 M 12 ZeroCERT

35312 2022-01-19 13:58 CheatLauncher.exe  

d315dc6f675f47c416baae65a42bb81c


RedLine stealer[m] NPKI RAT PWS .NET framework BitCoin Generic Malware Antivirus UPX TEST Create Service DGA Socket DNS Internet API Code injection Sniff Audio HTTP KeyLogger FTP Escalate priviledges Downloader ScreenShot P2P Steal credential Http API Ant Browser Info Stealer FTP Client Info Stealer VirusTotal Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut Creates executable files unpack itself Windows utilities Collect installed applications powershell.exe wrote Check virtual network interfaces suspicious process AppData folder WriteConsoleW installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed 		2 3 15.2 37 ZeroCERT

35313 2022-01-19 13:57 dddddsdsdssds.exe  

97221305ce5f05743f46f1998db359ba


Generic Malware PE File PE32 .NET EXE VirusTotal Malware Check memory Checks debugger unpack itself Windows Cryptographic key 		2.4 M 31 ZeroCERT

35314 2022-01-19 13:57 EnigmaFIX.exe  

411f9446b442f1562501e75f2e6705a0


Gen2 RAT Gen1 Generic Malware Malicious Library Anti_VM UPX Antivirus AntiDebug AntiVM PE File OS Processor Check PE32 .NET EXE AutoRuns PDB suspicious privilege MachineGuid Code Injection Check memory Checks debugger Creates shortcut Creates executable files unpack itself suspicious process AntiVM_Disk WriteConsoleW VM Disk Size Check Windows ComputerName RCE DNS Cryptographic key 		1 8.4 M ZeroCERT

35315 2022-01-19 13:57 woofer.exe  

dd609c7e066cc66b0a89541d2d5d527a


Generic Malware Malicious Library WinRAR UPX Antivirus AntiDebug AntiVM PE File OS Processor Check PE32 VirusTotal Malware powershell PDB suspicious privilege Code Injection Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName RCE Cryptographic key 		8.0 M 24 ZeroCERT

35316 2022-01-19 13:53 Fixer.exe  

cac419841a1e1f2b22bca4aff1303987


RAT PWS .NET framework Generic Malware Malicious Packer Antivirus UPX Malicious Library PE File PE32 .NET EXE PE64 OS Processor Check VirusTotal Malware AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process suspicious TLD WriteConsoleW Windows ComputerName Firmware Cryptographic key 		1 4 1 9.4 M 39 ZeroCERT

35317 2022-01-19 13:53 Bob-3.exe  

ef5ad87c5c8adc22905c65b1474f9d6b


PWS .NET framework Hide_EXE Generic Malware UPX PE File OS Processor Check PE32 .NET EXE VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself WriteConsoleW ComputerName crashed 		3.0 M 48 ZeroCERT

35318 2022-01-19 13:32 okcff.exe  

e9416a322e9a796d45588bc4fb04cd45


RAT PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed 		1 2 11.0 M 39 ZeroCERT

35319 2022-01-19 13:30 baam.exe  

de5a2e0a10ba01489d204e98f757fb9c


PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName crashed 		9.2 M 41 ZeroCERT

35320 2022-01-19 13:28 includes  

f1ee4d45ec92b5cdbd820781f9a65894


UPX PE64 PE File OS Processor Check DLL VirusTotal Malware Check memory crashed 		1.0 M 16 ZeroCERT

35321 2022-01-19 13:27 BZCBNZCNBZCMNZCMBCGDS.exe  

2e83d1cc862e6efa4deeccc2f680e028


Generic Malware PE File PE32 .NET EXE VirusTotal Malware Check memory Checks debugger unpack itself Windows Cryptographic key 		2.4 M 39 ZeroCERT

35322 2022-01-19 11:59 vbc.exe  

f34a9eb165527229a5d67e1029c58f7c


Malicious Library UPX PE File PE32 Emotet VirusTotal Malware AutoRuns Code Injection buffers extracted RWX flags setting unpack itself Windows RCE crashed 		3 4 6.8 M 32 ZeroCERT

35323 2022-01-19 11:56 7823754719107729.exe  

26c5dc4002976b3b9ae49f2440929df4


RAT Generic Malware Antivirus AntiDebug AntiVM PE File PE32 .NET EXE VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed 		2 4 12.0 M 33 ZeroCERT

35324 2022-01-19 11:54 026130784100001.exe  

1101631dfb8d6ac799613b5dad62a7e8


RAT Generic Malware Antivirus PE File PE32 .NET EXE VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed 		5.4 M 32 ZeroCERT

35325 2022-01-19 11:52 vbc.exe  

9cf8b984f75d8b33d788f7e1a3157a49


Formbook PE File PE32 VirusTotal Malware suspicious privilege Malicious Traffic unpack itself suspicious TLD 		1 5 3.6 M 44 ZeroCERT

keyword