popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
5461 2021-02-26 09:46 6hy67438ue.exe  

77be0dd6570301acac3634801676b5d7


VirusTotal Malware malicious URLs IP Check DNS crashed 		1 2 1 4.6 M 61 ZeroCERT

5462 2021-02-26 09:56 document-788035877.xls  

9122c9b7eb8f8e6ec8b683fff4909415


VirusTotal Malware Check memory unpack itself malicious URLs DNS crashed 		1 2 4.8 7 ZeroCERT

5463 2021-02-26 09:56 8.strike.exe  

2b1eb009e6282801c4ec6a417e9861e5


Dridex TrickBot VirusTotal Malware Report suspicious privilege Malicious Traffic Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs Kovter ComputerName DNS crashed 		1 5 3 1 7.4 M 22 ZeroCERT

5464 2021-02-26 10:06 winlog.exe  

456dfe1f5220c97f904bd4704ea34956


VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder malicious URLs sandbox evasion ComputerName crashed 		4.8 M 24 ZeroCERT

5465 2021-02-26 10:15 123.exe  

faa19f607365a378439887e1e03b0037


VirusTotal Malware AutoRuns Creates executable files unpack itself malicious URLs Windows 		1 2 1 5.0 M 58 ZeroCERT

5466 2021-02-26 10:15 aelUO3a53k0foHS.exe  

403debe0f6de85a73b3871a7acdae1a4


VirusTotal Malware Check memory Checks debugger unpack itself DNS crashed 		3.0 M 30 ZeroCERT

5467 2021-02-26 11:28 henos.exe  

bfbc5c7fdfdaf8147dbf6d1e4ea3e4f0


VirusTotal Malware unpack itself Remote Code Execution 		2.6 M 56 ZeroCERT

5468 2021-02-26 11:29 counters.strike.exe  

2b1eb009e6282801c4ec6a417e9861e5


Dridex TrickBot VirusTotal Malware Report suspicious privilege Malicious Traffic Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs Kovter ComputerName DNS crashed 		6 4 7.0 M 22 ZeroCERT

5469 2021-02-26 11:32 httpd.exe  

85a3f8f22ec1bbf032820b51c354d912


VirusTotal Malware Windows crashed 		2.8 M 35 ZeroCERT

5470 2021-02-26 12:22 pilo.exe  

288c67fedcce1193b2d7636fe5de0cf0


VirusTotal Malware RWX flags setting unpack itself malicious URLs DNS Software crashed 		4.6 M 49 ZeroCERT

5471 2021-02-26 12:22 IMG_0273_Scanned.jpg.exe  

d8fadca5d17c92f6290f5ea68c5b7103


Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell Buffer PE suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process malicious URLs VMware IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed 		2 4 4 17.2 M 27 ZeroCERT

5472 2021-02-26 13:13 raww-crypt.jpg.exe  

1c5f0d726c5e3cc0011ecd3addc29259


VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote suspicious process malicious URLs Windows ComputerName Cryptographic key 		10.0 M 44 ZeroCERT

5473 2021-02-26 13:15 regasm.exe  

5bc2745b8092b94810c5da147ba700b3


Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS Software 		1 2 4 15.2 M 50 ZeroCERT

5474 2021-02-26 13:16 raww-crypt.jpg.exe  

1c5f0d726c5e3cc0011ecd3addc29259


VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself powershell.exe wrote suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization Windows ComputerName Cryptographic key 		13.8 M 44 ZeroCERT

5475 2021-02-26 13:25 svchost.exe  

2b223b7709f48de9806c4477dd95c62f


VirusTotal Malware unpack itself malicious URLs Remote Code Execution DNS 		3.8 M 41 ZeroCERT

keyword