Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14431 2023-03-29 11:09 RegSvcs.exe  

004a919e31049dce0f9b96699cbbec5e


PWS .NET framework RAT UPX Malicious Library Malicious Packer OS Processor Check .NET EXE PE32 PE File Malware download AsyncRAT NetWireRC Malware DNS DDNS
4 4 1.4 ZeroCERT

14432 2023-03-29 10:52 RegSvcs.exe  

7f47c9d043fcec52e995e98d21813482


PWS .NET framework RAT UPX Malicious Library Malicious Packer OS Processor Check .NET EXE PE32 PE File Malware download AsyncRAT NetWireRC Malware DNS DDNS
3 3 2.4 M ZeroCERT

14433 2023-03-29 10:50 2.1.0ff.exe  

bc338e23e5411697561306eabb29bd9c


PE32 PE File VirusTotal Malware Windows crashed
2.0 M 45 ZeroCERT

14434 2023-03-29 10:48 Tarlatan.exe  

b26480dce772642635204619f30c35d6


RedLine stealer[m] PWS .NET framework RAT RedLine Stealer Confuser .NET SMTP PWS[m] AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed
1 9.4 M 50 ZeroCERT

14435 2023-03-29 10:47 Tarlatan.exe  

b26480dce772642635204619f30c35d6


RedLine stealer[m] PWS .NET framework RAT RedLine Stealer Confuser .NET SMTP PWS[m] AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed
1 9.4 M 50 ZeroCERT

14436 2023-03-29 10:46 65................65.............  

20e82801d2b5b859faab91680dbcb903


MS_RTF_Obfuscation_Objects RTF File doc LokiBot Malware download VirusTotal Malware c&c Malicious Traffic exploit crash unpack itself Windows Exploit DNS crashed Downloader
2 2 15 5.0 M 30 ZeroCERT

14437 2023-03-29 10:44 Gmeyad.exe  

a8001f151c1ce13aac56097a2bf1f789


NPKI PWS .NET framework RAT .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.0 M 30 ZeroCERT

14438 2023-03-29 10:42 62................62.............  

1b91a9d902d2d5c7f9c094955a1537f4


Loki MS_RTF_Obfuscation_Objects RTF File doc LokiBot Malware download VirusTotal Malware c&c Malicious Traffic exploit crash unpack itself Windows Exploit DNS crashed Downloader
2 3 16 1 5.0 M 30 ZeroCERT

14439 2023-03-29 10:41 vbc.exe  

fb4f4746d44d1ae472506334dacf6956


Loki UPX Malicious Library PE32 PE File OS Processor Check Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c suspicious privilege MachineGuid Malicious Traffic Check memory Creates executable files unpack itself AntiVM_Disk VM Disk Size Check installed browsers check Browser Email ComputerName DNS Software
1 2 9 1 8.4 M 42 ZeroCERT

14440 2023-03-29 10:41 vbc.exe  

7c85964484c4e3471124dd4dd5ef34df


UPX Malicious Library PE32 PE File FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files ICMP traffic unpack itself
3 8 1 5.0 41 ZeroCERT

14441 2023-03-29 10:38 2023.03.28-000125689.exe  

147ca2fb0887fd3d38afae9c02b5ca11


UPX PE32 PE File VirusTotal Malware Buffer PE Checks debugger buffers extracted Creates executable files unpack itself Checks Bios Detects VirtualBox Detects VMWare AppData folder sandbox evasion VMware anti-virtualization Windows Remote Code Execution crashed
9.0 27 ZeroCERT

14442 2023-03-29 10:15 99.exe  

3769516d37fcc4a870aee040c22dfc81


RedLine stealer[m] UPX Malicious Library AntiDebug AntiVM OS Processor Check PE32 PE File VirusTotal Malware Buffer PE Code Injection Check memory Checks debugger buffers extracted unpack itself Windows DNS Cryptographic key crashed
1 8.0 M 46 ZeroCERT

14443 2023-03-29 10:14 vbc.exe  

3d5458f26b59708a5d0da5567189aa41


UPX Malicious Library PE32 PE File OS Processor Check Browser Info Stealer Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces AppData folder IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger
1 2 5 9.4 M 42 ZeroCERT

14444 2023-03-29 10:14 100.exe  

9039af66487c909b5c54343b065a7d48


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself Remote Code Execution
2.0 M 34 ZeroCERT

14445 2023-03-29 10:13 sgd.exe  

e4a076e7e4ef7dda7760195ed7e69a63


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.0 M 33 ZeroCERT