Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Hosts	Score	VT	Player
49411	2024-11-13 14:13	svchot%20-%20%E5%89%AF%E6%9C%A... 75cdc74befd8c953ee2c022bd8366633 Generic Malware AntiDebug AntiVM PE File PE32 VirusTotal Malware AutoRuns Code Injection Check memory RWX flags setting Windows utilities suspicious process AppData folder Windows Remote Code Execution	1	6.4	58	ZeroCERT

49412	2024-11-13 14:15	ua.exe 9ef56e113c9c47b57c929d4b2215a904 Generic Malware Malicious Library Malicious Packer UPX PE File PE32 OS Processor Check VirusTotal Malware suspicious privilege MachineGuid unpack itself Checks Bios Check virtual network interfaces anti-virtualization		3.2	3	ZeroCERT

49413	2024-11-13 14:16	goodlabel%E6%89%93%E5%8D%B0%E6... ef46a9316cd362515cafb7ff559f7102 Confuser .NET PE File .NET EXE PE32 VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check Windows ComputerName Cryptographic key		3.6	49	ZeroCERT

49414	2024-11-13 14:18	PowderGpl.exe bf265e0055178b2aa642fc6df2ae5f40 Generic Malware Malicious Library UPX PE File PE32 OS Processor Check suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName		5.4		ZeroCERT

49415	2024-11-13 14:18	Ghost_1.5.11.5.exe 5192f8f21b79c8dc3990cc292f26b687 IAmTheKing Family Gen1 Emotet Generic Malware Downloader PhysicalDrive Malicious Library UPX Admin Tool (Sysinternals etc ...) ASPack Antivirus PE File PE32 OS Processor Check DllRegisterServer dll MSOffice File VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself suspicious process AppData folder AntiVM_Disk WriteConsoleW anti-virtualization VM Disk Size Check human activity check Software crashed		6.8	26	ZeroCERT

49416	2024-11-13 14:19	svcyr.exe 61fe809e805e74c4d6fc33b0e5a3305e UPX PE File PE32 OS Processor Check VirusTotal Malware AutoRuns Windows	2	3.2	61	ZeroCERT

49417	2024-11-13 14:20	nb.exe ccee0912e79d434f0d2c1e11274f23c0 Generic Malware Malicious Library Malicious Packer UPX Anti_VM PE File PE32 OS Processor Check VirusTotal Malware PDB MachineGuid WMI ComputerName		2.2	3	ZeroCERT

49418	2024-11-13 14:21	svhost.exe 200488185d59ab372448732e08da1b50 Malicious Library UPX PE File PE32 VirusTotal Malware AutoRuns suspicious privilege RWX flags setting sandbox evasion Windows DNS	1	5.2	58	ZeroCERT

49419	2024-11-13 14:24	cred64.dll 6f25f0506bf49fe7f35686ed1f8fef4a Generic Malware Malicious Library UPX Antivirus PE File DLL PE64 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell PDB suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process sandbox evasion installed browsers check Windows Browser ComputerName DNS Cryptographic key Software	1	9.6	51	ZeroCERT

49420	2024-11-13 14:26	Geek_se.exe 61ed70e09d63d896181ba50d4b39c791 Emotet Generic Malware Malicious Library Malicious Packer UPX Anti_VM PE File PE32 OS Processor Check VirusTotal Malware PDB unpack itself DNS crashed	1	4.2	54	ZeroCERT

49421	2024-11-13 15:00	espsemhvcioff.exe bbe62e176be79bc0a150fe76a651cae2 Malicious Library VMProtect PE File PE64 VirusTotal Malware		2.2	47	ZeroCERT

49422	2024-11-13 16:28	hello.exe 69d1c11ae24884ea55ab39787853ad0c Ransomware Malicious Library .NET EXE PE32 PE File VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself		2.4	58	r0d