popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
48886 2021-02-10 11:17 prosperx.exe  

3e843c40ae032a1ba115347f4db18f7b


VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious process malicious URLs Windows Cryptographic key 		12.8 M 27 ZeroCERT

48887 2021-02-10 11:12 lcibbrryy.png.exe  

8f56ace5e1047b19fc76e0461d8902d3


Browser Info Stealer Malware download FTP Client Info Stealer Azorult VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency powershell PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Collect installed applications powershell.exe wrote suspicious process AppData folder malicious URLs sandbox evasion anti-virtualization installed browsers check Ransomware Windows Browser Email ComputerName DNS Cryptographic key Software 		1 2 1 19.0 M 21 ZeroCERT

48888 2021-02-10 11:12 method1.exe  

1534e692bad0f92b5338e0e8a802440f


VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key crashed 		10.8 M 25 ZeroCERT

48889 2021-02-10 11:05 IMG_Scanned_90016.pdf.exe  

8fd5c3788e920113d8d9807eb9924985


VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs Tofsee Windows 		3 7 1 10.8 M 35 ZeroCERT

48890 2021-02-10 11:05 hero.exe  

3fd289d41e4fc31faa8a985a6ea9301f


VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows ComputerName DNS Cryptographic key crashed 		9.8 M 14 ZeroCERT

48891 2021-02-10 10:56 dog.exe  

d35392ec79e0adcc02e3750867eea7b9


VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName DNS Cryptographic key crashed 		11.4 M 26 ZeroCERT

48892 2021-02-10 10:55 hellhagm.exe  

d3147b484492da24d6c687331b0e3100


VirusTotal Malware Check memory RWX flags setting unpack itself 		2.0 M 19 ZeroCERT

48893 2021-02-10 10:50 docusiig.exe  

e43e5d1876655be8e8ec474a99eec2a0


Browser Info Stealer VirusTotal Email Client Info Stealer Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut Creates executable files unpack itself powershell.exe wrote Check virtual network interfaces suspicious process malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check human activity check installed browsers check Tofsee Windows Browser Email ComputerName DNS Cryptographic key crashed 		1 3 1 17.0 M 28 ZeroCERT

48894 2021-02-10 10:50 AQW.exe  

24ebe4f7426cfa105f65e18a3dade477


Buffer PE AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious process malicious URLs WriteConsoleW Windows DNS Cryptographic key DDNS keylogger 		2 13.8 M ZeroCERT

48895 2021-02-10 10:44 abdulx.exe  

5a6cbf41f026dd353186714f9116bbe7


Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces suspicious process malicious URLs WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger 		2 3 1 1 14.8 M 28 ZeroCERT

48896 2021-02-10 10:41 3118268.jpg.exe  

57ca32ec3386257eae2fbc24a99e14a0


RCE 		0.8 ZeroCERT

48897 2021-02-10 10:26 12345.exe  

ee459e1c288f2b5589e4c76363c068fe


Browser Info Stealer VirusTotal Email Client Info Stealer Malware powershell AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut Creates executable files unpack itself powershell.exe wrote Check virtual network interfaces suspicious process malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check human activity check installed browsers check Tofsee Windows Browser Email ComputerName DNS Cryptographic key crashed 		1 3 1 17.4 M 25 ZeroCERT

48898 2021-02-10 10:24 15sdws3dsf.exe  

018048aa9219c635e469f02aa72c963b


VirusTotal Malware AutoRuns Code Injection Check memory Windows utilities suspicious process sandbox evasion WriteConsoleW Windows RCE 		4.8 M 7 ZeroCERT

48899 2021-02-10 09:58 winlog5.exe  

ecc7e2c067e93950c2c3d45c62be3c50


Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs installed browsers check Windows Browser Email ComputerName Cryptographic key Software 		1 2 7 1 13.0 M 30 ZeroCERT

48900 2021-02-09 18:28 winlog3.exe  

65aac3656ba5cdb06751909d858a4fb2


VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key 		6 9 9.0 M 20 ZeroCERT

keyword