popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
5896 2024-02-04 17:16 V-10.exe  

cb7ecc02e8b4f15f52f9fd672038cae5


Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC VirusTotal Malware Cryptocurrency wallets Cryptocurrency AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key 		1 4 9.8 M 46 ZeroCERT

5897 2024-02-04 17:14 cred64.dll  

f01f5bc76b9596e0cfeab8a272cba3a5


Browser Login Data Stealer Malicious Library UPX PE File DLL PE64 OS Processor Check VirusTotal Malware PDB Checks debugger unpack itself installed browsers check Browser ComputerName DNS crashed 		6 1 4.8 M 52 ZeroCERT

5898 2024-02-04 17:13 daissss.exe  

10a331a12ca40f3293dfadfcecb8d071


RedLine Infostealer UltraVNC Malicious Library UPX PE32 PE File OS Processor Check VirusTotal Malware PDB Check memory Checks debugger unpack itself Windows Cryptographic key crashed 		3.4 M 33 ZeroCERT

5899 2024-02-04 17:12 probeDLLnocry-crypted.exe  

353a3b4d65ce9168817e09d5090b2afa


Generic Malware Malicious Library Malicious Packer Admin Tool (Sysinternals etc ...) UPX Socket ScreenShot Escalate priviledges PWS SMTP SSL DNS Dynamic Dns Internet API persistence KeyLogger AntiDebug AntiVM PE32 PE File MZP Format OS Processor Check VirusTotal Malware Code Injection buffers extracted malicious URLs DNS crashed 		1 8.0 M 48 ZeroCERT

5900 2024-02-04 17:10 1.exe  

6754d3c831c2392dd5a35b5768df4c37


RedlineStealer RedLine stealer .NET framework(MSIL) UPX AntiDebug AntiVM PE32 PE File .NET EXE OS Processor Check MSOffice File RedLine Malware download FTP Client Info Stealer VirusTotal Malware Microsoft suspicious privilege Code Injection Check memory Checks debugger buffers extracted RWX flags setting exploit crash unpack itself Windows utilities Collect installed applications installed browsers check Tofsee Stealer Windows Exploit Browser ComputerName DNS Cryptographic key Software crashed 		2 4 8 9.4 M 47 ZeroCERT

5901 2024-02-04 17:09 V-4.exe  

4eaaa00845efb359d77eab68b6de789e


Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC VirusTotal Malware Cryptocurrency wallets Cryptocurrency AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key 		1 4 9.8 M 47 ZeroCERT

5902 2024-02-04 17:09 june.exe  

f7ab347fd067c4704ff94acbd642ac50


Emotet Gen1 Malicious Library UPX Anti_VM PE32 PE File MZP Format PE64 DLL OS Processor Check DllRegisterServer dll ftp VirusTotal Malware Checks debugger Creates executable files unpack itself AppData folder Windows ComputerName DNS crashed 		1 4.0 M 8 ZeroCERT

5903 2024-02-04 17:07 V-13.exe  

ddeeb9e44cecc00f9df4d138e12fec63


Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key 		1 4 8.6 M ZeroCERT

5904 2024-02-04 17:05 Qcufhitwfzg.exe  

b71112887e2b67a93960842b156d3807


Hide_EXE .NET framework(MSIL) PE32 PE File .NET EXE VirusTotal Malware Check memory Checks debugger unpack itself ComputerName 		2.4 M 39 ZeroCERT

5905 2024-02-04 17:05 art1.exe  

f44f200e7d7f8ae6035b382a2a4240dd


PE File PE64 VirusTotal Cryptocurrency Miner Malware Cryptocurrency DNS CoinMiner 		2 2 1.4 M 45 ZeroCERT

5906 2024-02-04 17:03 univ.exe  

9421bb65a9d5ace737e8ebbb04986873


Emotet Generic Malware Malicious Library UPX PE32 PE File OS Processor Check CAB VirusTotal Malware Creates executable files AppData folder Windows 		1 2 2 2.6 M 32 ZeroCERT

5907 2024-02-04 17:03 V-9.exe  

3a91ea7a485aa39c0542093fe6c5e859


Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key 		1 4 9.8 M 47 ZeroCERT

5908 2024-02-04 17:00 X1.exe  

528b0c3da07891f258f33408edb3b780


PE File PE64 VirusTotal Malware DNS 		1 2.0 M 43 ZeroCERT

5909 2024-02-04 17:00 cred64.dll  

f35b671fda2603ec30ace10946f11a90


Generic Malware Malicious Library UPX Antivirus PE File DLL PE64 OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency PDB suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process sandbox evasion installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software 		1 1 9.8 M 44 ZeroCERT

5910 2024-02-04 16:58 V-11.exe  

abe0260b8f3436c1c6a7ef540a86adcd


Generic Malware Antivirus PE32 PE File .NET EXE Malware download AsyncRAT NetWireRC VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process WriteConsoleW Ransomware Windows ComputerName DNS Cryptographic key 		1 4 9.6 M 39 ZeroCERT

keyword