popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
48316 2024-09-23 11:09 66f00f515201d_otr.exe#kisotrvi...  

93ac3eec07e9598362d48f4d10b75a8b


Client SW User Data Stealer LokiBot ftp Client info stealer Malicious Library .NET framework(MSIL) UPX ASPack Http API PWS HTTP Code injection Internet API AntiDebug AntiVM PE File .NET EXE PE32 OS Processor Check FTP Client Info Stealer VirusTotal Malware Telegram Buffer PE PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI unpack itself Windows utilities Collect installed applications suspicious process malicious URLs sandbox evasion WriteConsoleW anti-virtualization installed browsers check Tofsee Windows Browser ComputerName DNS Software 		1 5 3 17.0 M 17 ZeroCERT

48317 2024-09-23 11:11 wcxoplwq.exe  

d822f5b3ac838341b2643c8908f0bc4f


Generic Malware Malicious Library UPX PE File PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces Tofsee Windows Browser Email ComputerName Software crashed 		2 2 7.8 M 24 ZeroCERT

keyword