Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
48541 2024-09-30 11:56 Trial2.bat  

d73df76a7d5d41df1d142a0c19c79b55


Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM PowerShell VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut RWX flags setting unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key
1 9.4 M 35 ZeroCERT

48542 2024-09-30 11:58 0803.exe  

f87afacff9c44b94db109e3e956a4b33


UPX PE File PE64 VirusTotal Malware
2.0 M 58 ZeroCERT

48543 2024-09-30 11:58 1.exe  

c3c547a2f7ba40a8ccc74c64f56f74bf


Generic Malware Malicious Library Malicious Packer ASPack UPX PE File DllRegisterServer dll PE32 OS Processor Check VirusTotal Malware suspicious privilege Creates executable files unpack itself AppData folder sandbox evasion Remote Code Execution
4.0 M 55 ZeroCERT

48544 2024-09-30 12:00 pesinislem.dll  

408cbd2f988947ba74b8b3deb531ff7c


Malicious Library UPX PE File DLL DllRegisterServer dll PE32 VirusTotal Malware Checks debugger unpack itself Remote Code Execution
1.8 M 5 ZeroCERT

48545 2024-09-30 12:00 whoami-unencrypted.exe  

29130d815c8858e5b133a2157ae90b91


Malicious Library PE File PE32 VirusTotal Malware crashed
1.6 M 45 ZeroCERT

48546 2024-09-30 12:02 %E6%B8%85%E7%90%86%E5%9E%83%E5...  

f004f01e7ad572da2ea0b7f7b377f203


Emotet UPX PE File PE32 MZP Format VirusTotal Malware Creates executable files suspicious process WriteConsoleW
2.0 M 26 ZeroCERT

48547 2024-09-30 12:03 H363BpKqz0MdVd7.exe  

016dbbc401cc2be3e4acc1e716e94d47


Generic Malware .NET framework(MSIL) Antivirus PWS SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell Telegram suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger
2 6 9 15.0 M 54 ZeroCERT

48548 2024-09-30 12:04 Monitor.exe  

12ae490149a12d69f279bf0ce6f083cf


Malicious Library PE File PE64 VirusTotal Malware RWX flags setting unpack itself ComputerName DNS
1 5.2 M 58 ZeroCERT

48549 2024-09-30 12:04 wechat-multiple.exe  

d62f5a093f1490f7f2b9019cb2b4d5cd


Emotet Generic Malware Malicious Library Malicious Packer UPX PE File DllRegisterServer dll PE32 OS Processor Check VirusTotal Malware unpack itself Remote Code Execution
2.6 M 41 ZeroCERT

48550 2024-09-30 12:06 66f6f96a49147_vfdngnfd.exe  

931db1103751e5384c11f5aa6c1e0418


PE File .NET EXE PE32 VirusTotal Malware PDB Check memory Checks debugger unpack itself WriteConsoleW ComputerName
3.0 M 51 ZeroCERT

48551 2024-09-30 12:08 millizxc.doc  

3e8be4b4743dd6458556da66f86d6709


MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware buffers extracted exploit crash unpack itself Exploit DNS crashed
2 4.6 M 29 ZeroCERT

48552 2024-09-30 12:11 plink-csb-crwd06.exe  

dc78260d39335f7c0c7638f6fe80af80


Metasploit Generic Malware PE File PE64 VirusTotal Malware DNS
1 3.0 M 43 ZeroCERT

48553 2024-09-30 12:13 Uploader.exe  

d8e3b8e49c46b0fced9d4c6a2a553654


Malicious Packer UPX PE File PE32 VirusTotal Malware unpack itself DNS
1 4.0 M 64 ZeroCERT

48554 2024-09-30 12:15 AQ.exe  

df36f65f0c16573ea07f7658c124b773


UPX PE File PE32 VirusTotal Malware Check memory unpack itself
2.8 M 47 ZeroCERT

48555 2024-09-30 12:17 reverse_tcp.exe  

4bb7be4f659be57a5b4202b3db1fa8d9


Malicious Packer UPX PE File PE32 VirusTotal Malware unpack itself
3.0 M 58 ZeroCERT