popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
11341 2021-08-15 12:44 lv.exe  

5da707c4db06e0549e3c2067df1a0256


Emotet Gen1 Gen2 Malicious Library UPX Malicious Packer DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Hijack Network Internet API FTP ScreenShot Http API Steal credential Downloader P2P persistence AntiDebug VirusTotal Malware AutoRuns Code Injection Check memory Checks debugger Creates executable files unpack itself Windows utilities AppData folder malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check Windows 		1 7.4 M 42 ZeroCERT

11342 2021-08-15 12:45 wj1.png  

b3edf0682d10790927ec8cdf5f1f187e


PE File DLL PE32 VirusTotal Malware Checks debugger WMI unpack itself ComputerName crashed 		3.4 M 28 ZeroCERT

11343 2021-08-15 12:46 file.exe  

4538e3df24ed8b8cd6a3474b2f0e1f74


UPX Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself 		2.2 M 24 ZeroCERT

11344 2021-08-15 12:47 22.exe  

bb01110f000d6a06eb3bce0024aaedc1


RAT Generic Malware PE File PE64 VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself Windows Cryptographic key 		3.0 M 30 ZeroCERT

11345 2021-08-15 12:49 felix1008.exe  

f37bc82cabddf6a2435471b1ccaabd28


NPKI RAT Generic Malware Malicious Library UPX DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Hijack Network Internet API FTP ScreenShot Http API Steal credential Downloader P2P persistence AntiDebug AntiVM PE Browser Info Stealer FTP Client Info Stealer VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key Software crashed 		2 4 2 14.0 M 38 ZeroCERT

11346 2021-08-15 12:49 nc.exe  

20e27f9073210db80a1fc8dea3138a09


UPX Malicious Library PE File PE64 OS Processor Check VirusTotal Malware PDB 		1.6 M 32 ZeroCERT

11347 2021-08-15 12:50 pub1.exe  

eef819b619f37c1a25eee1b173154760


UPX Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself 		2.2 M 25 ZeroCERT

11348 2021-08-15 12:52 a.exe  

627fc88e4e32885ef3eb655f353d3d73


Worm Phorpiex Malicious Packer UPX Malicious Library PE File PE32 VirusTotal Malware AutoRuns PDB Malicious Traffic Check memory buffers extracted Creates executable files Windows utilities suspicious process AppData folder AntiVM_Disk WriteConsoleW Firewall state off VM Disk Size Check Windows DNS 		1 7 9 9.2 M 44 ZeroCERT

11349 2021-08-15 12:52 dcc7975c8a99514da06323f0994cd7...  

832f80a11d3c25ff036d5227c9b03d46


UPX Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself 		2.0 M 17 ZeroCERT

11350 2021-08-15 12:54 runvd.exe  

aa95e1e1d2c37f9a0323f8b9fd07d477


UPX Malicious Library PE File OS Processor Check PE32 VirusTotal Malware PDB unpack itself 		2.2 M 24 ZeroCERT

11351 2021-08-15 12:55 140821.exe  

625449cacdf5d7e4b0fb8b2e98d5a845


Generic Malware Anti_VM PE File .NET EXE PE32 Browser Info Stealer VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Checks Bios Collect installed applications Detects VMWare Check virtual network interfaces VMware anti-virtualization installed browsers check Tofsee Windows Browser ComputerName Firmware DNS Cryptographic key crashed 		2 3 2 1 9.2 M 19 ZeroCERT

11352 2021-08-15 13:01 warzone.exe  

2c088bc2980ba15e3500f929a7d13019


Ave Maria WARZONE RAT Malicious Packer UPX Malicious Library PE File OS Processor Check PE32 VirusTotal Malware Check memory AntiVM_Disk VM Disk Size Check Remote Code Execution 		2.4 M 56 ZeroCERT

11353 2021-08-15 13:01 flx11.exe  

aa587896aed2ffa708a0d2f636856034


RAT NPKI Generic Malware Malicious Library UPX DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Hijack Network Internet API FTP ScreenShot Http API Steal credential Downloader P2P persistence AntiDebug AntiVM PE Browser Info Stealer FTP Client Info Stealer VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key Software crashed 		2 4 2 13.6 M 40 ZeroCERT

11354 2021-08-15 13:11 456.exe  

39d6ec1892af37c0fd5c5c2ea89ea782


Worm Phorpiex Malicious Packer UPX Malicious Library PE File PE32 VirusTotal Malware AutoRuns PDB Check memory buffers extracted Windows utilities suspicious process AntiVM_Disk WriteConsoleW Firewall state off VM Disk Size Check Windows DNS 		6 5 6.6 34 ZeroCERT

11355 2021-08-16 10:38 Shtate.txt.ps1  

af241c2ca6817d254292dd3e521470fc


Generic Malware Antivirus VirusTotal Malware unpack itself WriteConsoleW Windows Cryptographic key 		1.2 M 8 ZeroCERT

keyword