popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
4441 2024-11-26 15:51 cbchr.exe  

9a9afbcbaee06f115ea1b11f0405f2bd


Generic Malware Malicious Library Malicious Packer UPX .NET EXE PE32 PE File DLL OS Processor Check VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder crashed 		3.2 21 ZeroCERT

4442 2024-11-26 14:14 TikTok18.exe  

602876c49237a426d0e27ea8e6b1e0d6


Emotet Gen1 Malicious Library UPX PE64 CAB PE File VirusTotal Malware AutoRuns PDB Check memory Checks debugger Creates executable files unpack itself Windows RCE crashed 		3.4 14 ZeroCERT

4443 2024-11-26 14:12 x4lburt.exe  

96a7b754ca8e8f35ae9e2b88b9f25658


Emotet Gen1 Malicious Library UPX Admin Tool (Sysinternals etc ...) PE64 CAB PE File .NET EXE PE32 VirusTotal Malware Buffer PE AutoRuns PDB suspicious privilege Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder Windows RCE Cryptographic key 		8.0 30 ZeroCERT

4444 2024-11-26 14:11 InstaIIer.exe  

136d8eeb91c5fa33ff2049b441929788


PE32 PE File VirusTotal Malware 		1.2 41 ZeroCERT

4445 2024-11-26 14:11 installer.exe  

29389bd6bd907ba09de3c13227bf2d69


Generic Malware Malicious Library UPX ScreenShot KeyLogger AntiDebug AntiVM PE64 PE File OS Processor Check VirusTotal Malware Code Injection buffers extracted 		5.6 23 ZeroCERT

4446 2024-11-26 09:58 7mpPLxE.exe  

82bb7a2c4d05216ec5fc07aa20324bc1


Generic Malware Malicious Library UPX ScreenShot AntiDebug AntiVM PE32 PE File OS Processor Check VirusTotal Malware Code Injection buffers extracted unpack itself 		7.0 45 ZeroCERT

4447 2024-11-26 09:56 b.ps1  

7c7e76890fb3c1545dd3e826f9b6c12c


Generic Malware Antivirus suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Check virtual network interfaces suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key 		1 5.6 ZeroCERT

4448 2024-11-26 09:56 docx003.docx  

03c5b2ed5ee3d2e881c7a2e2cfc64114


VBA_macro Word 2007 file format(docx) ZIP Format VirusTotal Malware RWX flags setting 		2.6 38 ZeroCERT

4449 2024-11-26 09:56 pdf007.pdf  

e709e61dfd0ff9513a39c49c35849145


PDF Suspicious Link PDF VirusTotal Malware 		0.8 29 ZeroCERT

4450 2024-11-26 09:55 index.bat  

1bad3f6fbedf1f57ffc5dc2155621b76


Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key 		3.6 ZeroCERT

4451 2024-11-26 09:54 0.exe  

c36546a1c28a51afe4533d1f3083bb3d


Generic Malware AntiDebug AntiVM PE32 PE File VirusTotal Malware AutoRuns Code Injection Check memory RWX flags setting Windows utilities suspicious process AppData folder Windows RCE 		1 7.0 60 ZeroCERT

4452 2024-11-26 09:53 docx005.docx  

6d3b90b7d6da1af9cd77b1a348c3e1a7


VBA_macro Word 2007 file format(docx) ZIP Format VirusTotal Malware 		2.2 38 ZeroCERT

4453 2024-11-26 09:51 docx006.docx  

ed76eb774c6db599f8ad50d4489e3c31


VBA_macro Word 2007 file format(docx) ZIP Format VirusTotal Malware RWX flags setting 		2.6 38 ZeroCERT

4454 2024-11-26 09:51 docx007.docx  

1f9d2be9980612244c80cbe9767d44e6


VBA_macro Word 2007 file format(docx) ZIP Format VirusTotal Malware 		2.2 34 ZeroCERT

4455 2024-11-26 09:49 1Shasou.exe  

d0038532ae6cec64be83bc19d0b8f695


Generic Malware Malicious Library UPX PE32 PE File VirusTotal Malware unpack itself crashed 		1.8 48 ZeroCERT

keyword