popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
41326 2021-09-22 10:07 apines.exe  

331ad3f4c9d14f480bad2dc82ae4f835


Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself RCE 		2.4 M 26 ZeroCERT

41327 2021-09-22 10:06 Igno.exe  

861f9b74fd5fad95a95ea1c1d043f814


Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself 		1.8 M 27 ZeroCERT

41328 2021-09-22 10:05 598714267.exe  

c4ab556b6a1dd537cc1942204fdfd6cd


RAT Generic Malware PE64 PE File VirusTotal Malware AutoRuns suspicious privilege MachineGuid Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName 		6.2 M 47 ZeroCERT

41329 2021-09-22 10:04 .winlogon.exe  

7bbd97d7b4acd4b0a3cf3bb19883c348


RAT PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName crashed 		9.8 M 20 ZeroCERT

41330 2021-09-22 10:03 remit.exe  

cf98d2d4d4555323842c8371db09347e


UPX Malicious Library DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Internet API FTP ScreenShot Http API Steal credential Downloader P2P AntiDebug AntiVM PE File PE32 Emotet VirusTotal Malware Buffer PE AutoRuns Code Injection buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Tofsee Windows ComputerName crashed 		3 6 1 11.2 M 22 ZeroCERT

41331 2021-09-22 10:02 vbc.exe  

0379cf12ef3850e1d9232774a3d469c0


UPX PE File PE32 VirusTotal Malware RCE 		1.0 25 ZeroCERT

41332 2021-09-22 10:00 EXCEL.exe  

49af0abba03a7d559171f378728e9bc7


RAT Generic Malware Antivirus AntiDebug AntiVM PE File .NET EXE PE32 MSOffice File VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut RWX flags setting exploit crash unpack itself Disables Windows Security Check virtual network interfaces suspicious process Tofsee Windows Exploit ComputerName Cryptographic key crashed 		1 2 1 15.0 10 ZeroCERT

41333 2021-09-22 09:59 rollerkind2.exe  

85d8cfa3d99b2061e2ff4e9197090133


Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself RCE 		2.4 M 24 ZeroCERT

41334 2021-09-22 09:58 bryantzx.exe  

fc7f66871c6d3cd918238eb78bda5369


PWS .NET framework Generic Malware SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName crashed 		8.8 M 23 ZeroCERT

41335 2021-09-22 09:57 4wk3N3ftnNDhOk5.exe  

722235b69b44bcc7ebcf84c4356923a0


RAT PWS .NET framework Generic Malware Antivirus SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed 		12.8 M 28 ZeroCERT

41336 2021-09-22 09:56 23.exe  

778311c46a25d8f9fc121f06dad4886d


Generic Malware UPX Anti_VM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Checks Bios Collect installed applications Detects VMWare Check virtual network interfaces VMware anti-virtualization installed browsers check Tofsee Windows Browser ComputerName RCE Firmware DNS Cryptographic key Software crashed 		1 3 1 11.4 M 33 ZeroCERT

41337 2021-09-22 09:55 21.exe  

9495761e569d1589af99bb520cd01a54


AntiDebug AntiVM PE File PE32 DLL Browser Info Stealer Malware download VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency MachineGuid Code Injection Malicious Traffic Check memory Creates executable files unpack itself Windows utilities Collect installed applications suspicious process AppData folder WriteConsoleW anti-virtualization installed browsers check Stealer Windows Browser Email ComputerName DNS 		2 1 4 10.8 M 26 ZeroCERT

41338 2021-09-22 09:54 75796491.exe  

c9da7eeb35209ea9a47fcde193e77266


RAT PWS .NET framework Generic Malware Antivirus AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key crashed 		12.2 43 ZeroCERT

41339 2021-09-22 09:52 19.exe  

ceb3dd231090ce93da86c04e1616c305


RAT Generic Malware UPX PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself ComputerName 		2.6 M 35 ZeroCERT

41340 2021-09-22 09:51 1062852386.exe  

a74d8695a741f5dd6f4384b52743387d


RAT PWS .NET framework Generic Malware PE File OS Processor Check .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key Software crashed 		1 3 1 8.0 50 ZeroCERT

keyword