popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
49066 2024-10-21 13:44 chrome_93.exe  

54645f818b03eea58b28345e88707bd6


Themida PE File PE64 VirusTotal Malware unpack itself Windows crashed 		3.0 M 50 ZeroCERT

49067 2024-10-21 13:46 dos.exe  

a2163bf270762a1deec37145f2ef5267


Generic Malware Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware 		1.2 M 40 ZeroCERT

49068 2024-10-21 13:46 a.exe  

fec6019b90092723b543219410ce71b4


Emotet Generic Malware UPX Malicious Library Admin Tool (Sysinternals etc ...) Malicious Packer Create Service Socket Http API ScreenShot Escalate priviledges PWS HTTP SMTP SSL DNS Internet API persistence KeyLogger AntiDebug AntiVM PE File PE32 MZP Forma VirusTotal Malware suspicious privilege MachineGuid Code Injection Checks debugger Creates executable files unpack itself AppData folder malicious URLs sandbox evasion ComputerName Remote Code Execution DNS 		2 9.2 M 42 ZeroCERT

49069 2024-10-21 13:48 DEF.exe  

6520492a4e7f9bc4dfb068de1c7b6450


Browser Login Data Stealer Generic Malware Malicious Library Downloader Malicious Packer UPX PE File PE32 OS Processor Check VirusTotal Malware AutoRuns Windows DNS DDNS 		1 1 3.8 M 64 ZeroCERT

49070 2024-10-21 13:48 main.exe  

2e25791fd09060fec2d4650c9872056b


Gen1 Generic Malware Malicious Library ASPack UPX Malicious Packer Anti_VM PE File PE64 OS Processor Check MSOffice File PE32 DLL ELF ZIP Format ftp VirusTotal Malware Check memory Creates executable files AppData folder 		2.0 3 ZeroCERT

49071 2024-10-21 13:49 kg.exe  

ed8c78a13d8e1f2fa403ed013f9bdeca


PE File PE32 MZP Format VirusTotal Malware Check memory Checks debugger unpack itself 		3.2 M 45 ZeroCERT

49072 2024-10-21 13:51 6_Setup.exe  

8b938c2fc147c133573ba0f73dea242f


Generic Malware Malicious Library Malicious Packer UPX Anti_VM PE File DllRegisterServer dll PE32 OS Processor Check VirusTotal Malware 		1.2 M 32 ZeroCERT

49073 2024-10-21 13:51 softina.exe  

1ec718ada22e61a5bbbc2407a842b95b


Generic Malware Malicious Library Antivirus UPX PE File PE32 OS Processor Check VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key 		1 5.8 M 29 ZeroCERT

49074 2024-10-21 13:52 67069bbc38ee7_installs09.exe  

1c93bbbf2b2d8e83c062f284ec826e7b


UPX PE File PE64 VirusTotal Malware 		2.0 M 46 ZeroCERT

49075 2024-10-21 13:53 file.exe  

13095aaded59fb08db07ecf6bc2387ef


Browser Login Data Stealer Generic Malware Malicious Library Downloader Malicious Packer UPX PE File PE32 OS Processor Check VirusTotal Malware AutoRuns Windows DNS DDNS 		1 1 3.2 M 64 ZeroCERT

49076 2024-10-21 13:55 MK.exe  

ff5afed0a8b802d74af1c1422c720446


RedLine stealer Antivirus ScreenShot PWS AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware PDB Code Injection Check memory Checks debugger buffers extracted unpack itself WriteConsoleW Windows DNS Cryptographic key 		1 11.0 M 61 ZeroCERT

49077 2024-10-21 13:55 OneDrive.exe  

1b99f0bf9216a89b8320e63cbd18a292


Malicious Library UPX PE File PE64 OS Processor Check VirusTotal Malware Buffer PE MachineGuid Check memory Checks debugger buffers extracted unpack itself 		3.6 M 57 ZeroCERT

49078 2024-10-21 13:57 12.exe  

f45b9623a2a2ff5960e53fb290a60936


Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware unpack itself 		1.8 M 32 ZeroCERT

49079 2024-10-21 14:05 xmrig.exe  

43f595460b2fca77561c63e8a80178dd


PE File PE64 VirusTotal Malware crashed 		2.2 M 55 ZeroCERT

49080 2024-10-21 14:06 a.bat  

121608ce0c05b5205100465b41792f4b


Generic Malware Downloader Antivirus Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API FTP KeyLogger P2P AntiDebug AntiVM VirusTotal Cryptocurrency Miner Malware Cryptocurrency powershell suspicious privilege Check memory Checks debugger WMI Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key 		2 1 7.0 M 8 ZeroCERT

keyword