Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14581 2023-03-23 09:26 atom.xml  

0fcb9115095928eaf98f18f0f65accd1


Hide_EXE PowerShell Script MZ AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed
2 2 4.2 5 ZeroCERT

14582 2023-03-23 09:26 atom.xml  

a7d44a32fcf911de0dae1b535ca3fa1a


AntiDebug AntiVM MSOffice File VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed
2 4.2 3 ZeroCERT

14583 2023-03-22 18:23 96.exe  

9faea65cff61ad64e4bc4c3913c336be


Cutwail Mali Malware download VirusTotal Malware Buffer PE MachineGuid Code Injection Malicious Traffic Check memory buffers extracted ICMP traffic unpack itself Check virtual network interfaces suspicious process sandbox evasion Tofsee Windows Backdoor ComputerName Remote Code Execution DNS Cryptographic key
259 679 6 16.0 M 27 ZeroCERT

14584 2023-03-22 17:33 vbc.exe  

3a02d50415b4f76d02cda80340ecccbe


UPX Malicious Library PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns Check memory Checks debugger Creates executable files unpack itself AppData folder Windows Browser Email ComputerName Cryptographic key Software crashed
7.0 M 21 ZeroCERT

14585 2023-03-22 17:32 power.exe  

ba218b60cb97c3532b8b9c796d954622


RAT Emotet Gen2 Ave Maria WARZONE RAT Gen1 Generic Malware UPX Malicious Library Malicious Packer Admin Tool (Sysinternals etc ...) .NET EXE PE32 PE File OS Processor Check DLL PE64 JPEG Format Malware download Amadey VirusTotal Malware AutoRuns Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities suspicious process AppData folder WriteConsoleW installed browsers check Tofsee Windows Browser ComputerName DNS crashed
6 3 6 6 11.2 M 45 ZeroCERT

14586 2023-03-22 17:31 handdiy_6.exe  

54f8a4c3864f17466705a15a2ef2a06f


Gen2 Trojan_PWS_Stealer Credential User Data Generic Malware UPX Malicious Library SQLite Cookie Malicious Packer Anti_VM OS Processor Check PE32 PE File PNG Format Browser Info Stealer suspicious privilege MachineGuid Code Injection Checks debugger WMI Creates executable files exploit crash Windows utilities suspicious process WriteConsoleW installed browsers check Tofsee Windows Exploit Browser ComputerName Remote Code Execution DNS crashed
1 4 3 8.2 M ZeroCERT

14587 2023-03-22 17:29 Clip1.exe  

fa0e319484845c1333e5c1e621659027


UPX PE64 PE File VirusTotal Malware
1.4 M 12 ZeroCERT

14588 2023-03-22 17:29 007.exe  

fe05605a8065764a5ec8aba32db6e697


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.0 M 32 ZeroCERT

14589 2023-03-22 13:17 abux.txt  

bf1074df865384a5cffab3142a5cb38c


Hide_EXE ScreenShot AntiDebug AntiVM Check memory unpack itself
1.0 guest

14590 2023-03-22 10:44 wL8P9unF.zip  

1f5166dbb451fe00af869e50377e286d


ZIP Format VirusTotal Malware Report DNS
12 5 2.6 4 ZeroCERT

14591 2023-03-22 10:36 NMemo1Setp.exe  

f12aa4983f77ed85b3a618f7656807c2


Confuser .NET .NET EXE PE32 PE File VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee Ransomware DNS
3 3 3.8 M 59 guest

14592 2023-03-22 10:28 handdiy_4.exe  

802e1974c79084d3b80ce713a54929aa


AgentTesla Gen2 Trojan_PWS_Stealer browser info stealer Credential User Data Generic Malware Google Chrome Downloader UPX Malicious Library SQLite Cookie Malicious Packer Create Service DGA Socket ScreenShot DNS BitCoin Internet API Code injecti Browser Info Stealer VirusTotal Malware suspicious privilege Code Injection Checks debugger WMI Creates executable files ICMP traffic exploit crash unpack itself Windows utilities suspicious process malicious URLs suspicious TLD WriteConsoleW installed browsers check Tofsee Windows Exploit Browser ComputerName Remote Code Execution DNS crashed
1 4 5 11.6 M 57 ZeroCERT

14593 2023-03-22 10:25 file.zip  

bbcf3b4e597001a89d6a95ded6009ef0


ZIP Format VirusTotal Malware
0.6 11 ZeroCERT

14594 2023-03-22 10:17 vbc.exe  

f99d5a071e38ed4add47c1d47f657422


PWS .NET framework .NET EXE PE32 PE File VirusTotal Malware PDB Check memory Checks debugger unpack itself crashed
2.6 M 34 ZeroCERT

14595 2023-03-22 10:16 zxcvb.exe  

688774feec1cc9685acaece804dc7a26


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.2 M 53 ZeroCERT