popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
9886 2023-10-04 14:19 4H.xll  

31a57c5f8a6b8bd49f1ec6583c9ade36


PE File DLL PE64 MachineGuid Check memory Checks debugger RWX flags setting unpack itself suspicious process WriteConsoleW crashed 		1 2.6 ZeroCERT

9887 2023-10-04 10:43 52.xll  

fdbe1d30cc4a01948fe99be1159bbb5d


PE File DLL PE64 VirusTotal Malware MachineGuid Check memory Checks debugger RWX flags setting unpack itself suspicious process WriteConsoleW crashed 		1 3.0 7 ZeroCERT

9888 2023-10-04 10:31 xkX69dIw9KOs.exe  

e782fef1056c8725e60e298742004176


njRAT backdoor PE File PE32 .NET EXE Malware download njRAT VirusTotal Malware DNS DDNS 		2 3 1.6 57 ZeroCERT

9889 2023-10-04 10:30 hl.exe  

5dd98f2b9f3dc468601411359cee78b8


Emotet Generic Malware Malicious Library UPX .NET framework(MSIL) Malicious Packer PE File PE32 .NET EXE OS Name Check OS Memory Check OS Processor Check JPEG Format Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Check virtual network interfaces AppData folder AntiVM_Disk IP Check VM Disk Size Check installed browsers check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger 		2 4 3 12.6 41 ZeroCERT

9890 2023-10-04 10:30 JinxRunner.exe  

d53171d108afee9cdfcd948f986d5541


UPX Malicious Packer PE File PE64 OS Processor Check MachineGuid IP Check ComputerName 		2 1 2.2 ZeroCERT

9891 2023-10-04 10:29 ReklamX.ps1  

2160e7fcf5819e58a56ff11da1573885


Hide_EXE Generic Malware Antivirus VirusTotal Malware Check memory unpack itself Windows Cryptographic key 		1.4 18 ZeroCERT

9892 2023-10-04 10:27 JinxRunner.exe  

99a86d2efce8a24dd4cb3bbb356feb6b


AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed 		2 1 3.8 M ZeroCERT

9893 2023-10-04 10:25 trafico.exe  

99b3984c3d9b1c505bb6d2624d4a350f


Malicious Library PE File PE32 VirusTotal Malware 		1.4 M 24 ZeroCERT

9894 2023-10-04 10:25 clip64.dll  

bbacde1c1d68325516dada17bce0a48e


Amadey Malicious Library UPX Admin Tool (Sysinternals etc ...) PE File DLL PE32 OS Processor Check VirusTotal Malware PDB Checks debugger unpack itself 		2.0 M 57 ZeroCERT

9895 2023-10-04 10:23 JinxRunner.exe  

71b292094ff79b9c520d28ceac33c198


AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed 		2 1 3.8 M ZeroCERT

9896 2023-10-04 10:21 cred64.dll  

74d702c79b9813d2b0379c1d69c60414


Browser Login Data Stealer Malicious Library UPX PE File DLL PE64 OS Processor Check VirusTotal Malware PDB Checks debugger unpack itself installed browsers check Browser ComputerName crashed 		2.8 M 45 ZeroCERT

9897 2023-10-04 10:20 download  

add29a185e990ee7eb0bb41294c0869b


Generic Malware PE File PE32 .NET EXE VirusTotal Malware PDB Check memory Checks debugger unpack itself ComputerName 		2.8 M 49 ZeroCERT

9898 2023-10-04 10:19 tvnc  

279e80bab42a9971336f59d05e281f96


PE File DLL PE64 MachineGuid Check memory Checks debugger RWX flags setting unpack itself suspicious process WriteConsoleW crashed 		2.6 M ZeroCERT

9899 2023-10-04 10:18 download  

0736f9d1b7d620b9459c50f8597e8a56


Generic Malware PE File PE32 .NET EXE VirusTotal Malware PDB Check memory Checks debugger unpack itself ComputerName 		2.8 M 50 ZeroCERT

9900 2023-10-04 09:38 BonitSetup.exe  

22bddfd1a372bb47701d241dcc17660b


Gen1 RedLine stealer Generic Malware Malicious Library UPX Admin Tool (Sysinternals etc ...) Malicious Packer Obsidium protector Anti_VM Javascript_Blob PE File PE32 ftp DLL PE64 OS Processor Check suspicious privilege Check memory Checks debugger Creates executable files RWX flags setting unpack itself Check virtual network interfaces AppData folder Ransomware crashed 		3.8 ZeroCERT

keyword