popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
46576 2024-08-04 13:52 nut.exe  

232e7b89f4be6cbc0c706f8520b1c647


Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 M 61 ZeroCERT

46577 2024-08-04 13:56 update.exe  

e79580a75196a17aef6f7240ea67e954


njRAT backdoor Generic Malware Malicious Library Antivirus UPX PE File MSOffice File PE32 CAB OS Name Check OS Processor Check DLL VirusTotal Malware PDB suspicious privilege Check memory Checks debugger Creates executable files unpack itself AppData folder AntiVM_Disk VM Disk Size Check Windows ComputerName Remote Code Execution DNS Cryptographic key 		1 6.6 M 21 ZeroCERT

46578 2024-08-04 13:56 345.exe  

35a8e22dd6eafbae106923d23eecded3


UPX PE File PE64 VirusTotal Malware 		2.6 M 45 ZeroCERT

46579 2024-08-04 13:58 XClient.exe  

9fe64529733d8081d761fe73bd8bd050


Malicious Library Antivirus UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check Windows ComputerName Cryptographic key 		4.0 M 62 ZeroCERT

46580 2024-08-04 14:01 123.exe  

ff886c6dfffaf1abafb52e93b7a69249


UPX PE File PE32 VirusTotal Malware suspicious privilege Windows utilities WriteConsoleW Windows DNS 		1 5.2 M 33 ZeroCERT

46581 2024-08-04 14:01 x64.dll  

b96f469d875c7fa8c2f913e906dde0e6


Generic Malware Malicious Library Malicious Packer UPX PE File DLL PE32 OS Processor Check VirusTotal Malware DNS 		1 2.6 M 55 ZeroCERT

46582 2024-08-04 14:03 Update.exe  

74ab75d72b7032670f1dc2ef43da440a


Emotet Generic Malware Malicious Library ASPack UPX ftp DllRegisterServer dll PE File PE32 OS Processor Check DLL VirusTotal Malware Check memory Creates executable files unpack itself Check virtual network interfaces AppData folder sandbox evasion Tofsee Interception Remote Code Execution 		1 6 1 5.6 M 49 ZeroCERT

46583 2024-08-04 14:05 server.scr  

7e503c206e57f0295da017914a957d04


BlackMatter Ransomware PE File PE32 VirusTotal Malware unpack itself 		2.2 M 64 ZeroCERT

46584 2024-08-04 14:08 Crack.exe  

7dad2c4407957ac063b27b5dbbe8e596


UPX PE File PE32 VirusTotal Malware suspicious privilege Windows utilities WriteConsoleW Windows DNS 		1 4.4 M 47 ZeroCERT

46585 2024-08-04 14:10 ngrok.exe  

d0b7c78ee341e83d50b03cbd31e085ad


Malicious Library Malicious Packer UPX ftp PE File PE64 wget OS Processor Check VirusTotal Malware DNS 		1 1.6 M 22 ZeroCERT

46586 2024-08-04 14:12 mimikatz.exe  

482780a54542c89b59b83fc39febe95c


Generic Malware Malicious Packer UPX PE File PE64 VirusTotal Malware Check memory WriteConsoleW 		1.6 M 63 ZeroCERT

46587 2024-08-04 14:14 Loader.exe  

57556d30b4d1e01d5c5ca2717a2c8281


Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware PDB 		1.2 M 28 ZeroCERT

46588 2024-08-04 17:45 pic5.jpg.exe  

85b1854b81d15ac9116aa200304d7ca0


Generic Malware Malicious Library PE File PE64 FTP Client Info Stealer VirusTotal Malware Malicious Traffic Check memory buffers extracted unpack itself Tofsee Software 		1 2 1 4.0 M 21 ZeroCERT

46589 2024-08-04 17:45 powercat.ps1  

8a319fa42e7c7432318f28a990f15696


Generic Malware Antivirus VirusTotal Malware unpack itself 		1.6 41 ZeroCERT

46590 2024-08-04 17:45 pic7.jpg.exe  

e219acd0a358a6fd72cb005b00d4952f


Gen1 Emotet Malicious Library UPX AntiDebug AntiVM PE File PE64 CAB VirusTotal Malware AutoRuns PDB MachineGuid Code Injection Check memory Checks debugger Creates executable files unpack itself suspicious process Windows ComputerName Remote Code Execution 		6.2 M 41 ZeroCERT

keyword