Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14566 2023-03-23 13:19 vbc.exe  

d4908996778bfe1127a10b8db2741e88


PWS .NET framework RAT Generic Malware UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName DNS
1 3.8 M 26 ZeroCERT

14567 2023-03-23 13:19 vbc.exe  

ca62a1b8f19765c9dab034741c463aed


UPX Malicious Library PE32 PE File OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Check memory Creates executable files unpack itself AntiVM_Disk VM Disk Size Check installed browsers check Browser Email ComputerName DNS Software
1 8.8 M 41 ZeroCERT

14568 2023-03-23 13:16 Downloader.exe  

75d45ac139ac9630ef44d1952e574633


PE32 PE File Malware download VirusTotal Malware AutoRuns Malicious Traffic Creates executable files RWX flags setting AppData folder Windows Remote Code Execution DNS Downloader
2 1 7 5.0 M 59 ZeroCERT

14569 2023-03-23 13:15 529f38_9aa2021e548e4d6ea92f285...  

cd265d216aa729b1051f8631185f3520


ZIP Format Word 2007 file format(docx) VirusTotal Malware unpack itself Tofsee
2 4 3 1 2.2 M 16 ZeroCERT

14570 2023-03-23 13:14 svchost.exe  

a8a106555b9e1f92569d623c66ee8c12


UPX Malicious Library Malicious Packer OS Processor Check PE32 PE File VirusTotal Malware DNS
1 3.6 M 51 ZeroCERT

14571 2023-03-23 13:13 rocheleb4.1.exe  

78a95a8cb18e37d6565520be5e8013c4


UPX Malicious Library PE32 PE File FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself
3 8 1 4.8 M 25 ZeroCERT

14572 2023-03-23 13:12 vil.exe  

bc8579d75cae5223ed53f34e037b2eaa


PWS .NET framework RAT Hide_EXE SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows Browser Email ComputerName Cryptographic key Software crashed
10.4 M 37 ZeroCERT

14573 2023-03-23 13:10 buil.exe  

495ce8bc963f4b0d156e4b7e5ed97ed4


PWS .NET framework RAT .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.2 M 48 ZeroCERT

14574 2023-03-23 13:10 clip.exe  

8d3942d2bfaf962a1177aee8d08ca079


PE32 PE File VirusTotal Malware Telegram AutoRuns MachineGuid buffers extracted Check virtual network interfaces Windows DNS
2 2 4.6 M 26 ZeroCERT

14575 2023-03-23 13:08 world.exe  

f8e0e6946af017037e8bb4d5455d4e99


PWS .NET framework RAT UPX Confuser .NET OS Processor Check .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed
1 6.2 M 47 ZeroCERT

14576 2023-03-23 13:07 LowesDistillery.exe  

f0a2d9e0876b2de2d5f5b7936a299e9f


Malicious Library PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.4 M 57 ZeroCERT

14577 2023-03-23 13:06 myp.exe  

ab64460cd667c1964fc0ee034ec60d15


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself Windows DNS Cryptographic key
1 4.8 M 58 ZeroCERT

14578 2023-03-23 13:05 server.exe  

faf3c47c4d784d20688a8cfd37198518


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware AutoRuns PDB suspicious privilege Creates executable files Disables Windows Security Windows DNS
1 7.8 M 58 ZeroCERT

14579 2023-03-23 13:04 Good.exe  

9086ff963ae98510ea0eb9abad045939


NPKI PWS .NET framework RAT UPX Malicious Packer Code injection AntiDebug AntiVM OS Processor Check .NET EXE PE32 PE File Browser Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency Telegram AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Windows Browser ComputerName DNS
1 4 5 11.2 M 35 ZeroCERT

14580 2023-03-23 13:03 uu1.exe  

43919d10c09cc339e383f3b62ad9b311


PWS .NET framework RAT North Korea UPX .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
1.6 18 ZeroCERT