popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
49396 2024-11-13 13:58 MJPVgHw.exe  

5523f28f2224dde8d74286b09146bb47


Generic Malware Malicious Library Malicious Packer UPX Http API Escalate priviledges HTTP Code injection Internet API persistence AntiDebug AntiVM PE File PE64 OS Processor Check Lnk Format GIF Format VirusTotal Malware Buffer PE AutoRuns Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself suspicious process sandbox evasion Windows Firefox Browser ComputerName crashed 		11.4 55 ZeroCERT

49397 2024-11-13 14:00 cred.dll  

89cb9bdb4c8e64b9bfe35de70d1a1b2e


Generic Malware Malicious Library UPX Antivirus PE File DLL PE32 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software 		1 9.8 51 ZeroCERT

49398 2024-11-13 14:00 RuntimeBrikon.exe  

06d9c1f5142610b929557ea6e6005a63


Gen1 Generic Malware Malicious Library Malicious Packer UPX PE File ftp PE64 OS Processor Check VirusTotal Malware PDB 		1.8 48 ZeroCERT

49399 2024-11-13 14:02 RuntimeBroker.exe  

dec397e36e9f5e8a47040adbbf04e20b


Generic Malware Malicious Library UPX PE File PE32 OS Processor Check VirusTotal Malware PDB 		1.2 29 ZeroCERT

49400 2024-11-13 14:03 ghost.exe  

cc7580472c8aa97ff84ded87d5cf6e6e


IAmTheKing Family Gen1 Emotet Generic Malware PhysicalDrive Downloader Malicious Library UPX Admin Tool (Sysinternals etc ...) ASPack Antivirus PE File PE32 OS Processor Check DllRegisterServer dll MSOffice File VirusTotal Malware Check memory Checks debugger Creates executable files suspicious process AppData folder AntiVM_Disk WriteConsoleW anti-virtualization VM Disk Size Check human activity check Software crashed 		6.6 32 ZeroCERT

49401 2024-11-13 14:04 1.dll  

df03779329dcd093c166c678bf3e866c


Generic Malware Malicious Library Malicious Packer UPX PE File DLL PE32 OS Processor Check VirusTotal Malware Checks debugger unpack itself 		2.0 31 ZeroCERT

49402 2024-11-13 14:04 installPG.dll  

5ae27c0cf40c4eb6450b99af10ce9750


Emotet Gen1 PhysicalDrive Generic Malware Malicious Library Malicious Packer UPX PE File DLL PE32 OS Processor Check VirusTotal Malware 		1.8 40 ZeroCERT

49403 2024-11-13 14:05 SEWanClt.exe  

952d79680f0faa1ffcbd5fab648e066f


Malicious Library UPX Anti_VM PE File PE32 MZP Format OS Processor Check VirusTotal Malware Check memory RWX flags setting unpack itself AntiVM_Disk VM Disk Size Check Remote Code Execution crashed 		3 4.0 52 ZeroCERT

49404 2024-11-13 14:06 sjkhjkh.exe  

6f8217a0df2ab1639bf575995f447b5b


Generic Malware Malicious Library UPX PE File ftp PE64 OS Processor Check VirusTotal Malware PDB 		1.8 51 ZeroCERT

49405 2024-11-13 14:07 djksahjkdhkh.exe  

bb90600c0a9be0cb52202b5ebf95c5cc


Generic Malware Malicious Library UPX PE File ftp PE64 OS Processor Check VirusTotal Malware PDB 		1.8 49 ZeroCERT

49406 2024-11-13 14:08 Autoupdate.exe  

3042ed65ba02e9446143476575115f99


Malicious Library Antivirus UPX PE File .NET EXE PE32 Lnk Format GIF Format VirusTotal Malware PDB suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Check virtual network interfaces AntiVM_Disk VM Disk Size Check ComputerName 		5.0 45 ZeroCERT

49407 2024-11-13 14:09 ASUFER.exe  

3e47dd3f7b0be7bc26abea791d386145


Gen1 Generic Malware UPX Malicious Packer Antivirus Malicious Library PE File PE32 VirusTotal Malware AutoRuns suspicious privilege WMI Creates executable files Windows utilities WriteConsoleW Windows ComputerName 		1 6.4 56 ZeroCERT

49408 2024-11-13 14:11 SecurityHealthService.exe  

73c088a54fd675be63ae50e1415bce9b


Malicious Library Admin Tool (Sysinternals etc ...) UPX PE File .NET EXE PE32 VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 52 ZeroCERT

49409 2024-11-13 14:11 clr.exe  

a736e23ae291f6d3a848fdb1aaa7348f


Generic Malware UPX Malicious Library PE File PE32 VirusTotal Malware AutoRuns suspicious privilege Check memory WMI Creates executable files Windows utilities WriteConsoleW Windows ComputerName 		6.8 55 ZeroCERT

49410 2024-11-13 14:13 dkasjhajksdhdjkas.exe  

09e252478ab23c7c677a2765234335bd


Generic Malware Malicious Library UPX PE File ftp PE64 OS Processor Check VirusTotal Malware PDB 		1.8 46 ZeroCERT

keyword