popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
44341 2020-12-26 21:41 docs34.xlsx  

7c630efe0e3a7059b6ca53c4cc94a1d1


Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Buffer PE suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted RWX flags setting unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Ransomware Interception Windows Browser Tor Email ComputerName DNS Cryptographic key Software crashed 		3 8 1 17.4 M 56 ZeroCERT

44342 2020-12-26 21:38 hgtfQlN8Vz.vx.exe  

0dd3a14f922feac556d68299ea87ca26


VirusTotal Malware Check memory unpack itself crashed 		2.0 M 25 ZeroCERT

44343 2020-12-26 18:51 customer1.exe  

c3c1704da6242a52877806e3bde2c46b


Browser Info Stealer VirusTotal Malware PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger WMI Creates executable files exploit crash unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW installed browsers check Windows Exploit Browser ComputerName Remote Code Execution DNS crashed 		4 5 2 13.2 M 20 ZeroCERT

44344 2020-12-26 18:48 23.exe  

36c9354dc161b5bbbc3fdbb5f7f37bb9

 0.2 ZeroCERT

44345 2020-12-26 12:59 lv.exe  

55eef1be7b19e0f52556a646368aefc2


VirusTotal Malware AutoRuns Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities Checks Bios Detects VMWare suspicious process AppData folder malicious URLs WriteConsoleW VMware anti-virtualization IP Check Windows ComputerName DNS crashed 		1 2 1 12.4 M 45 ZeroCERT

44346 2020-12-26 12:58 file.exe  

71e9e13ca8e3a30fd03afa468373b73e


VirusTotal Malware unpack itself Remote Code Execution 		2.8 M 30 ZeroCERT

44347 2020-12-25 17:15 cf1f18b675120f83d0cd94574a6243...  

92f013276bd184b61e9912df743051c5


VirusTotal Malware MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut Creates executable files unpack itself malicious URLs WriteConsoleW Tofsee ComputerName DNS crashed 		2 5 1 7.0 6 ZeroCERT

44348 2020-12-25 17:11 Ticket__9342.doc  

c6e40d689ded34916df7ad8f5463c008


Vulnerability VirusTotal Malware unpack itself malicious URLs Windows 		1 2 1 4.4 31 ZeroCERT

44349 2020-12-25 17:06 cred.dll  

b34b687a3937cb052ac2c7644eb0f1bd


VirusTotal Malware Check memory unpack itself crashed 		2.4 37 ZeroCERT

44350 2020-12-25 17:04 55555555555.jpg.exe  

276be4a33f80a91c2010535ff65113cb

 0.6 ZeroCERT

44351 2020-12-25 10:42 QRP-0712.exe  

afc52682bf18c1834426dee4eacc335f


VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows DNS Cryptographic key 		5.4 M 30 ZeroCERT

44352 2020-12-25 10:41 QRP_02277.exe  

c78255e20bf9e51a9f928465114d6663


VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key 		5.4 M 44 ZeroCERT

44353 2020-12-25 10:38 QP-60379.exe  

79f93748ffb37a31ac69f5d367dab997


VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key 		4.6 M 21 ZeroCERT

44354 2020-12-25 10:37 QP-10533.exe  

7b80992176d91fe6ccb5301fb16e3e40


VirusTotal Malware Buffer PE AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs Windows DNS Cryptographic key DDNS keylogger 		2 1 14.8 M 15 ZeroCERT

44355 2020-12-25 10:35 QDP_03091.exe  

303135f92b5f7c5db42510834c946d06


VirusTotal Malware Buffer PE suspicious privilege Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows DNS Cryptographic key 		5.4 M 14 ZeroCERT

keyword