popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
10891 2023-08-09 09:18 ndert.vbs  

7e45ca3f2a940271a7c18250c7a1dadf


Generic Malware Antivirus PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName Cryptographic key 		5.8 M 15 ZeroCERT

10892 2023-08-09 09:16 Amdau.exe  

c3ee25c18f2c408c9054d9c6d4c1e147


UPX Admin Tool (Sysinternals etc ...) Http API HTTP Code injection Internet API AntiDebug AntiVM .NET EXE PE File PE32 GIF Format VirusTotal Malware AutoRuns PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Windows ComputerName Remote Code Execution DNS 		1 1 12.4 M 34 ZeroCERT

10893 2023-08-09 09:15 sora.spc  

1d8c33eee1934dbfa0e581c0051db9db


AntiDebug AntiVM ELF VirusTotal Malware Check memory Checks debugger unpack itself 		2.4 M 40 ZeroCERT

10894 2023-08-09 09:13 EDH.vbs  

e03c043b1a3e86b6dde4b27049089272


Generic Malware Antivirus PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName Cryptographic key 		6.0 21 ZeroCERT

10895 2023-08-09 09:13 purchaseorder.exe  

0860b9decf194469ff9004953916fad8


.NET EXE PE File PE32 VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted WMI unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder WriteConsoleW Windows ComputerName 		1 2 8.4 M 32 ZeroCERT

10896 2023-08-09 09:12 kobee.exe  

f9523a569eaa47e6ce6dc10c9b07117b


NSIS Suspicious_Script_Bin UPX Malicious Library PE File PE32 DLL VirusTotal Malware Check memory Creates shortcut Creates executable files unpack itself AppData folder Windows crashed 		4.4 40 ZeroCERT

10897 2023-08-09 09:12 Revolution_Makerspace_Certific...  

faeb62b6240705a8af7152198449e64a


UPX Malicious Library PE File PE32 BMP Format DLL VirusTotal Malware Check memory Creates executable files unpack itself AppData folder crashed 		2.6 7 ZeroCERT

10898 2023-08-09 09:10 RyotEtudes100.exe  

54ae4618ca14b4128ef095694382b46c


Malicious Library PE File PE32 VirusTotal Malware PDB 		2.0 M 34 ZeroCERT

10899 2023-08-08 18:59 chrome.exe  

44306c039d9c7ae4e1ffc6f3241331f1


Malicious Library PE File PE32 VirusTotal Malware PDB 		2.0 M 33 ZeroCERT

10900 2023-08-08 18:56 000000000000000%23%23%23%23%23...  

3823b7a10c3bbe3661e9513439ae092b


MS_RTF_Obfuscation_Objects RTF File doc Malware download VirusTotal Malware Malicious Traffic RWX flags setting exploit crash IP Check Tofsee Windows Exploit DNS crashed 		1 3 7 5.0 M 34 ZeroCERT

10901 2023-08-08 18:54 Setup.exe  

60c09568374a7cc6fde4472e2f381d25


UPX PE64 PE File VirusTotal Malware crashed 		1.6 M 11 ZeroCERT

10902 2023-08-08 18:52 file.exe  

a1e9bdbabd0a6e1065ad0c87c56d1300


UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself 		1.6 M 25 ZeroCERT

10903 2023-08-08 18:50 smss.exe  

0945e91513b403d503ec58b7e52f9451


LokiBot Socket PWS DNS AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs installed browsers check Browser Email ComputerName DNS Software 		1 1 7 14.0 M 21 ZeroCERT

10904 2023-08-08 18:50 smss.exe  

e923ec2b220878f6f9f80ce6efbf9166


UPX Malicious Library OS Processor Check PE File PE32 VirusTotal Malware unpack itself 		1.6 M 25 ZeroCERT

10905 2023-08-08 18:48 ntoskrnl.exe  

aad4399dbd35d6aa67335c724fcf91c9


UPX .NET framework(MSIL) Malicious Library OS Processor Check .NET EXE PE File PE32 VirusTotal Malware Check memory Checks debugger unpack itself 		2.0 M 45 ZeroCERT

keyword