popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
4306 2024-12-16 18:40 hellres.exe  

2511d20918fe5495f4cec12ed8e010df


Generic Malware Malicious Library Malicious Packer UPX PE64 PE File OS Processor Check Browser Info Stealer Malware download VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege Check memory buffers extracted Creates shortcut unpack itself Collect installed applications sandbox evasion IP Check installed browsers check Tofsee Ransomware MeduzaStealer Stealer Browser Email ComputerName DNS 		3 8 9.8 55 ZeroCERT

4307 2024-12-16 18:40 DON.ps1  

653067d2d3176ff5d92fb98c03cef517


Hide_EXE Generic Malware Antivirus VirusTotal Malware 		0.6 15 ZeroCERT

4308 2024-12-16 18:23 c.exe  

1348d98df832fb91e6ce20f25f242afd


Malicious Library Javascript_Blob .NET EXE PE32 PE File VirusTotal Malware PDB Check memory Checks debugger unpack itself 		2.2 29 ZeroCERT

4309 2024-12-16 18:23 test30.exe  

e9289cac82968862715653ae5eb5d2a4


Malicious Library PE64 PE File VirusTotal Malware RWX flags setting unpack itself ComputerName DNS 		2 5.2 63 ZeroCERT

4310 2024-12-16 18:22 eo.exe  

3626726dafb657c2a331dbe3b7fd1fde


Malicious Library Malicious Packer .NET framework(MSIL) UPX .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 57 ZeroCERT

4311 2024-12-16 18:21 resp.exe  

bee040fc0caf73ee0cb2e55d4c703f22


Generic Malware Malicious Library Malicious Packer UPX PE64 PE File OS Processor Check Browser Info Stealer Malware download VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege Check memory buffers extracted Creates shortcut unpack itself Collect installed applications sandbox evasion IP Check installed browsers check Tofsee Ransomware MeduzaStealer Stealer Browser Email ComputerName DNS 		3 8 9.8 59 ZeroCERT

4312 2024-12-16 18:21 System32.exe  

d4817ea043beaf35d19fa6a5adaa179c


RedLine stealer RedlineStealer Themida Malicious Library .NET framework(MSIL) UPX Anti_VM PE32 PE File OS Processor Check VirusTotal Malware RWX flags setting unpack itself Checks Bios Detects VirtualBox Detects VMWare sandbox evasion VMware anti-virtualization Windows Firmware DNS crashed 		1 8.4 61 ZeroCERT

4313 2024-12-16 18:19 BootstrapperV1.23_1.exe  

02c70d9d6696950c198db93b7f6a835e


Malicious Library .NET framework(MSIL) UPX PE64 .NET EXE PE File VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself Windows utilities Check virtual network interfaces suspicious process Tofsee Windows ComputerName crashed 		4 1 4.4 57 ZeroCERT

4314 2024-12-16 18:10 System32.exe  

6cb031cdd91da096f26f63b4f0b88051


UPX .NET EXE PE32 PE File OS Processor Check VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself DNS 		1 4.2 58 ZeroCERT

4315 2024-12-16 18:10 frnd.exe  

298f1cd4f1804f025564bdb392538183


Generic Malware Malicious Library UPX Anti_VM PE64 PE File OS Processor Check VirusTotal Malware unpack itself DNS 		1 2.4 58 ZeroCERT

4316 2024-12-16 18:08 clip64.dll  

c2f3fbbbe6d5f48a71b6b168b1485866


Amadey Generic Malware Malicious Library UPX DLL PE32 PE File OS Processor Check VirusTotal Malware Malicious Traffic Checks debugger unpack itself DNS 		2 2 1 3.6 54 ZeroCERT

4317 2024-12-16 18:08 rep.exe  

f838d5fb648b1114a94119660f7726bd


Malicious Library Malicious Packer .NET framework(MSIL) UPX .NET EXE PE32 PE File Malware download NetWireRC VirusTotal Malware IP Check RAT DNS 		1 3 3 2.6 56 ZeroCERT

4318 2024-12-16 18:06 cred64.dll  

c6aabb27450f1a9939a417e86bf53217


Generic Malware Malicious Library UPX Antivirus DLL PE64 PE File OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell PDB suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process sandbox evasion installed browsers check Windows Browser ComputerName DNS Cryptographic key Software 		2 2 1 9.8 48 ZeroCERT

4319 2024-12-16 18:06 ana.exe  

dae921c124f6cebd75fc83f55bbe08f5


Malicious Library Malicious Packer .NET framework(MSIL) UPX .NET EXE PE32 PE File Malware download NetWireRC VirusTotal Malware IP Check RAT DNS 		1 3 3 3.6 63 ZeroCERT

4320 2024-12-16 18:04 c3e1c0e4-696d-42f2-a8a1-492034...  

9a68fc12ec201e077c5752baa0a3d24a


Generic Malware Malicious Library Malicious Packer UPX Antivirus AntiDebug AntiVM PE32 PE File VirusTotal Malware powershell suspicious privilege MachineGuid Code Injection Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed 		8.4 53 ZeroCERT

keyword