Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14596 2023-03-22 10:16 csrss.exe  

6e73708e3d21f04b6f18aa31a68f582e


Generic Malware UPX Malicious Library Antivirus PE32 PE File OS Processor Check DLL PNG Format JPEG Format CHM Format VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process AppData folder Windows ComputerName Cryptographic key crashed
7.0 M 25 ZeroCERT

14597 2023-03-22 10:14 95.exe  

86226298f5f7c878323137119929a4c1


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself
1.8 M 23 ZeroCERT

14598 2023-03-22 10:14 vbc.exe  

55aca393f1147b8ad1b2abc5a3c255e4


Generic Malware UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself Remote Code Execution
2.4 M 43 ZeroCERT

14599 2023-03-22 10:13 m8ci.exe  

d90d42631511b54444b9cc592e5a4aa2


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
1.8 20 ZeroCERT

14600 2023-03-22 10:12 vbc.exe  

2414aab964b19e19cb8b57ccc6b3e6c3


PWS .NET framework .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself
2.2 39 ZeroCERT

14601 2023-03-22 10:12 EMVSERVER.exe  

702681c442d61dc4a9719bd3e377dc17


Malicious Packer .NET EXE PE32 PE File VirusTotal Malware Buffer PE AutoRuns suspicious privilege MachineGuid Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW human activity check Windows ComputerName DNS DDNS
2 1 10.4 63 ZeroCERT

14602 2023-03-22 10:11 foto0162.exe  

d5ba7e786412f9d686e4377de5caeb8f


Gen1 Emotet UPX Malicious Library CAB PE32 PE File Browser Info Stealer FTP Client Info Stealer AutoRuns PDB suspicious privilege Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Disables Windows Security Collect installed applications AntiVM_Disk VM Disk Size Check installed browsers check Windows Update Browser ComputerName Remote Code Execution DNS Cryptographic key Software crashed
1 10.4 ZeroCERT

14603 2023-03-22 10:09 vbc.exe  

eaa6fde6d2070d0a187fdb2b86918216


UPX Malicious Library PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Check memory Creates executable files unpack itself installed browsers check Browser Email ComputerName DNS Software
1 1 8.0 27 ZeroCERT

14604 2023-03-22 10:08 vbc.exe  

d064bfcbf2eeffb0dd746daeb03a7208


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself
2.0 34 ZeroCERT

14605 2023-03-22 10:07 information.txt.ps1  

be800de1da1616a9df4556f400d39ac6


Generic Malware Antivirus VirusTotal Malware Check memory unpack itself WriteConsoleW Windows Cryptographic key
1 1.8 20 ZeroCERT

14606 2023-03-22 05:18 zxcvb.exe  

688774feec1cc9685acaece804dc7a26


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.2 53 eDu

14607 2023-03-21 22:52 sample3.exe  

f1e85e3876ddb88acd07e97c417191f4


AntiDebug AntiVM .NET EXE PE32 PE File VirusTotal Malware suspicious privilege Check memory Checks debugger ICMP traffic unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder Windows ComputerName crashed
7.2 58 guest

14608 2023-03-21 21:23 window_61.data  

8e5c17aaaa222861615d346b2291810f


AntiDebug AntiVM Email Client Info Stealer suspicious privilege Checks debugger Creates shortcut unpack itself installed browsers check Browser Email ComputerName
3.4 BRY

14609 2023-03-21 17:48 server.exe  

68d4bfeb87777e1c8766088077822341


Generic Malware UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself Remote Code Execution
2.0 27 ZeroCERT

14610 2023-03-21 17:36 photo_004.exe  

b93879979784a7ef5257c890e9d73f97


UPX Malicious Library OS Processor Check PE32 PE File PDB unpack itself
1.0 ZeroCERT