popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
48496 2024-09-30 10:02 63747acb643b84a943895e5f34d348...  

9cfc9f5f8a781cbf07b23cc803b9d098


UPX Anti_VM PE File PE32 MSOffice File VirusTotal Malware AutoRuns Code Injection Checks debugger Creates executable files RWX flags setting unpack itself Windows utilities suspicious process sandbox evasion WriteConsoleW anti-virtualization human activity check Windows Browser ComputerName crashed 		12.2 M 55 ZeroCERT

48497 2024-09-30 10:03 temp.exe  

e5852100b1ecba5fce3684062e08ec7f


Malicious Library UPX PE File PE64 VirusTotal Malware Code Injection RWX flags setting Tofsee crashed 		2 2 3.0 M 45 ZeroCERT

48498 2024-09-30 10:05 mvchost.exe  

4f121ea16b6d93625750722b82b68566


Metasploit Generic Malware PE File PE64 VirusTotal Malware DNS crashed 		1 3.6 M 56 ZeroCERT

48499 2024-09-30 10:07 health.exe  

421de03d830eabeec0a2ffd19a3eb8fa


Malicious Packer UPX PE File PE64 VirusTotal Malware Buffer PE buffers extracted RWX flags setting crashed 		2.8 M 27 ZeroCERT

48500 2024-09-30 10:09 vfdafgh.exe  

ad0e0451229105c930c40e9ab4ace88b


PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName 		2.8 M 37 ZeroCERT

48501 2024-09-30 11:17 666.exe  

2664b1bbe0a0c9f7ead278b507836f8c


Malicious Library UPX PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself Check virtual network interfaces Windows DNS 		1 5.2 M 55 ZeroCERT

48502 2024-09-30 11:17 Client-built.exe  

1673e6ff83d498882395b5acc7364032


Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 58 ZeroCERT

48503 2024-09-30 11:19 vsdag15.exe  

30c937ab3260fefe2e98cd875610fb63


PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName 		3.0 M 47 ZeroCERT

48504 2024-09-30 11:19 66f8f23776c09_DisplayedScreens...  

659535a3135886f39da6baf90e54ad98


Generic Malware Downloader Malicious Library UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM PE File VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName 		7.2 M 17 ZeroCERT

48505 2024-09-30 11:20 winvnc.x86.dll  

719a93419dd5123b52961a076d283f21


Malicious Library UPX PE File DLL PE32 OS Processor Check VirusTotal Malware unpack itself 		1.6 M 56 ZeroCERT

48506 2024-09-30 11:20 winvnc.x64.dll  

bc9fd6c5621c3fa5a16489db19746112


Generic Malware Malicious Library UPX PE File DLL PE64 OS Processor Check VirusTotal Malware 		1.2 M 58 ZeroCERT

48507 2024-09-30 11:22 wenotedfssheiscutegirltolovehe...  

69504f46161b8e0834cb6394de6b99cf


MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware Malicious Traffic exploit crash unpack itself Exploit DNS crashed 		1 4.6 M 38 ZeroCERT

48508 2024-09-30 11:24 bind.aspx.exe  

9c49281d063296a545c79bf288d4c3bf


Stealc Gen1 Generic Malware Malicious Library Malicious Packer Antivirus UPX AntiDebug AntiVM PE File PE32 OS Processor Check FTP Client Info Stealer VirusTotal Malware Telegram MachineGuid Code Injection Malicious Traffic Check memory WMI unpack itself Windows utilities Collect installed applications suspicious process AppData folder sandbox evasion WriteConsoleW anti-virtualization installed browsers check Tofsee Windows Browser ComputerName DNS Software 		2 5 3 1 11.4 M 50 ZeroCERT

48509 2024-09-30 11:25 66f6fb19d15d0_vfdsfjfdms12.exe  

10e555691e5bd8608d3afde0c81a61e4


PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName 		3.0 M 47 ZeroCERT

48510 2024-09-30 11:25 66f6b6b7f2ec8_intro.exe  

73ce03e3c27ea3475814c6dbad0cdccb


Stealc Gen1 Themida Generic Malware Malicious Library UPX Malicious Packer Anti_VM AntiDebug AntiVM PE File PE32 DLL OS Processor Check Browser Info Stealer Malware download FTP Client Info Stealer Vidar VirusTotal Email Client Info Stealer Malware c&c Code Injection Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Windows utilities Checks Bios Collect installed applications Detects VMWare suspicious process AppData folder sandbox evasion WriteConsoleW VMware anti-virtualization installed browsers check Stealc Stealer Windows Browser Email ComputerName DNS Software crashed plugin 		9 1 16 1 15.0 M 46 ZeroCERT

keyword