popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
45301 2021-05-28 08:21 file3.exe  

4fbb9246662af8c36caf102eccf4bff0


AsyncRAT backdoor BitCoin AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI unpack itself Collect installed applications Check virtual network interfaces installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key Software crashed 		2 3 2 12.4 8 ZeroCERT

45302 2021-05-28 08:20 vbc.exe  

ca1cad0dfeee9119a7bef5911c8f194e


SMTP KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself suspicious process WriteConsoleW Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger 		1 13.4 M 24 ZeroCERT

45303 2021-05-28 08:11 vuga.exe  

6a5d0132df698a0743d0a5a8a1515cfc


AsyncRAT backdoor AgentTesla(IN) Malicious Packer .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Windows Browser Email ComputerName Cryptographic key Software crashed 		5.6 M 37 ZeroCERT

45304 2021-05-28 08:09 ConsoleApp10.exe  

d2470e33e04e12bdc2acf475f40da080


AsyncRAT backdoor PWS .NET framework SMTP KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces VMware IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed 		2 4 4 9.6 33 ZeroCERT

45305 2021-05-28 08:07 336601.7z  

f958bdca722740cdb24e86b349be4f96


Escalate priviledges KeyLogger AntiDebug AntiVM VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself DNS 		3.2 30 ZeroCERT

45306 2021-05-28 08:06 PKL.exe  

b375d47d63b41b7e1aca548742b01382


PE File PE32 VirusTotal Malware RWX flags setting unpack itself anti-virtualization crashed 		2.6 36 ZeroCERT

45307 2021-05-27 17:42 relese.exe  

67c0f9f7a63db607929cfbae83442911


AsyncRAT backdoor NPKI Gen2 AntiDebug AntiVM PE File OS Processor Check PE32 DLL .NET DLL PNG Format JPEG Format MSOffice File .NET EXE PE64 VirusTotal Malware PDB Code Injection buffers extracted Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder Tofsee Windows Exploit RCE DNS crashed 		3 5 1 7.6 48 ZeroCERT

45308 2021-05-27 17:41 file.exe  

7a2f5bc93c259322c16e5a94f7139031


PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself Windows crashed 		3.0 M 24 ZeroCERT

45309 2021-05-27 13:48 vbc.exe  

6adc941dcd82ed0869059fbdb520fc0a


AsyncRAT backdoor PWS .NET framework Malicious Library SMTP KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName DNS Cryptographic key crashed 		9.4 17 Kim.GS

45310 2021-05-27 10:28 file21.exe  

f9003a4991f68b4b07e73ac1e89cf374


PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself Windows crashed 		3.0 M 40 ZeroCERT

45311 2021-05-27 10:27 AwSetp.exe  

77a3dd75a7400c15f9a95929f2f76df6


AsyncRAT backdoor Gen1 .NET EXE PE File PE32 DLL OS Processor Check Browser Info Stealer FTP Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency AutoRuns suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications Check virtual network interfaces AppData folder installed browsers check Tofsee Ransomware Windows Browser ComputerName Software crashed 		11 6 1 6 10.6 M ZeroCERT

45312 2021-05-27 10:27 Setup2.exe  

138f1e886df537f014b2d4a74efb57d3


Emotet Generic Malware VMProtect PE File PE32 DLL GIF Format Malware suspicious privilege Malicious Traffic Check memory Checks debugger Creates shortcut Creates executable files unpack itself AppData folder AntiVM_Disk IP Check VM Disk Size Check installed browsers check Browser ComputerName DNS crashed 		3 8 2 2 6.8 M ZeroCERT

45313 2021-05-27 10:26 BBQbrowser.exe  

81189d695443fc7f2a0adab7a6957d89


AsyncRAT backdoor BitCoin AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces suspicious TLD installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key crashed 		3 5 3 1 10.8 M ZeroCERT

45314 2021-05-27 10:26 WLP_Setup.exe  

6bd3098fc75bd4616d1d069b41a366cd


AsyncRAT backdoor PWS .NET framework .NET EXE PE File OS Processor Check PE32 Browser Info Stealer FTP Client Info Stealer Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key Software crashed 		2 7 3 6.2 M ZeroCERT

45315 2021-05-27 10:26 file18.exe  

495214dc4882127b4cf5480510ce440c


AsyncRAT backdoor PWS .NET framework BitCoin AntiDebug AntiVM .NET EXE PE File PE32 VirusTotal Malware Code Injection Malicious Traffic Check memory Checks debugger buffers extracted ICMP traffic unpack itself Check virtual network interfaces suspicious TLD Tofsee Windows Cryptographic key crashed 		2 4 1 9.8 M 37 ZeroCERT

keyword