Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14446 2023-03-29 09:58 unknown.exe  

cd1bafd37e93fdee22767836f098caa2


RAT UPX Malicious Library .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Discord Browser Email ComputerName DNS Cryptographic key Software crashed keylogger
2 4 3 7.6 M ZeroCERT

14447 2023-03-29 09:57 vbc.exe  

4f57c474b77a208ee4d212894b3512d2


PWS .NET framework Generic Malware Antivirus AntiDebug AntiVM .NET EXE PE32 PE File FormBook Malware download VirusTotal Malware powershell PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key
2 5 2 2 11.8 M 37 ZeroCERT

14448 2023-03-29 09:55 atom.xml  

bb3afc961cd9b132922db723407508e7


Hide_EXE PowerShell Script MZ Generic Malware Browser Info Stealer VirusTotal Malware MachineGuid Code Injection Checks debugger exploit crash unpack itself installed browsers check Exploit Browser crashed
2 4.0 M 2 ZeroCERT

14449 2023-03-29 09:54 Contract_02_21_Copy#32.exe  

6e4e21b15f5c27ca82b7934fa6544c5d


UPX Malicious Library OS Processor Check PE64 PE File VirusTotal Malware ICMP traffic unpack itself ComputerName DNS
5 5.4 43 ZeroCERT

14450 2023-03-29 09:53 vbc.exe  

9d2cb12118d3f3e4ff3d14c61ebab4e0


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself
2.0 M 38 ZeroCERT

14451 2023-03-29 09:51 unknown.exe  

56d15468fdb9bafcbcb155f50ac902b8


RAT UPX OS Processor Check .NET EXE PE32 PE File suspicious privilege MachineGuid Check memory Checks debugger unpack itself AntiVM_Disk VM Disk Size Check Windows ComputerName keylogger
3.2 ZeroCERT

14452 2023-03-29 09:50 GIB.exe  

e47210accd809054f50bb4f1c765004e


RAT Malicious Library PE64 PE File VirusTotal Malware Buffer PE Check memory Checks debugger buffers extracted unpack itself
3.2 M 34 ZeroCERT

14453 2023-03-29 09:46 atom.xml  

bb3afc961cd9b132922db723407508e7


Hide_EXE PowerShell Script MZ AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed
2 2 4.2 2 ZeroCERT

14454 2023-03-29 07:44 qz.exe  

01b694e73ae67576d5960eef85a9ad2f


NPKI PWS .NET framework RAT UPX Malicious Library OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself
2.0 51 ZeroCERT

14455 2023-03-29 07:43 sync.exe  

3b7f9dcb3b83acf40f32d5f7c500fefb


PWS .NET framework RAT Downloader task schedule UPX Malicious Library Malicious Packer Create Service DGA Socket ScreenShot DNS Internet API Code injection PWS[m] Sniff Audio HTTP Steal credential KeyLogger P2P Escalate priviledges FTP Http API AntiDebug VirusTotal Malware AutoRuns Code Injection Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName
4.8 M 55 ZeroCERT

14456 2023-03-28 13:47 nerino.exe  

4e9932a21816959b576ac87a41855cce


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.0 M 22 guest

14457 2023-03-28 13:45 nerino.exe  

4e9932a21816959b576ac87a41855cce


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.0 M 22 guest

14458 2023-03-28 12:46 vbc.exe  

de3409f5d14c9b23a29ad18de6e35446


PWS .NET framework RAT .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.0 M 33 guest

14459 2023-03-28 08:37 vbc.exe  

de3409f5d14c9b23a29ad18de6e35446


PWS .NET framework RAT .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName DNS
1 2.6 M 33 ZeroCERT

14460 2023-03-28 08:35 2023.exe.exe  

027a60b4337dd0847d0414aa8719ffec


UPX Malicious Library Malicious Packer OS Processor Check PE32 PE File VirusTotal Malware Check memory Checks debugger WMI Creates shortcut unpack itself Windows utilities suspicious process Windows ComputerName DNS crashed
1 6.4 46 ZeroCERT