Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14611 2023-03-21 17:26 Blotlg1NOUSE.vbs  

78a900693c638974a061a547f55ea676


Generic Malware Antivirus Remcos VirusTotal Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut unpack itself suspicious process suspicious TLD anti-virtualization Windows ComputerName DNS Cryptographic key crashed
3 5 2 8.4 M 1 ZeroCERT

14612 2023-03-21 17:25 Jubilets1.vbs  

d79593a6fb6c636a50334085b9d6018b


Generic Malware Antivirus VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself Windows utilities suspicious process Windows ComputerName Cryptographic key crashed
7.8 20 ZeroCERT

14613 2023-03-21 13:41 Lst.exe  

163d4e2d75f8ce6c838bab888bf9629c


Gen1 UPX Malicious Library Malicious Packer Anti_VM OS Processor Check PE64 PE File DLL ZIP Format VirusTotal Malware Check memory Creates executable files unpack itself crashed
2.2 8 ZeroCERT

14614 2023-03-21 10:21 j6418a06081c941.29196432.js  

75293cec307cbd04d23b935d9b931194

crashed
0.2 ZeroCERT

14615 2023-03-21 10:21 j6418a0613a7d18.89805382.js  

2e37b17c6a51dc28a37449055a305efa

unpack itself crashed
0.6 ZeroCERT

14616 2023-03-21 10:19 photo_004.exe  

46748c64f38cbf845c1802db5b367ed2


Generic Malware UPX Malicious Library OS Processor Check PE32 PE File unpack itself Remote Code Execution
1.2 M ZeroCERT

14617 2023-03-21 10:18 rw001ext.exe  

0ad8d4cffac5f713a2ef3b2c72a84e29


Gen2 Generic Malware UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself
1.2 M 8 ZeroCERT

14618 2023-03-21 10:15 vbc.exe  

ca19b29e80779c0f9d74604b3d17940e


UPX Malicious Library PE32 PE File FormBook Malware download Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself
18 19 3 17 3.4 M ZeroCERT

14619 2023-03-21 10:15 vbc.exe  

506b8329e83dc58c82c251756ca342b7


Loki Loki_b Loki_m PWS .NET framework Hide_EXE Socket DNS PWS[m] AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs installed browsers check Browser Email ComputerName DNS Software
1 1 7 1 13.6 M 34 ZeroCERT

14620 2023-03-21 10:13 photo_004.exe  

8c641e565b13fc56efdcd7658956accf


Generic Malware UPX Malicious Library OS Processor Check PE32 PE File unpack itself Remote Code Execution
1.2 M ZeroCERT

14621 2023-03-21 10:11 man.exe  

87be1ac6122ed0c75b3af80696b9e686


PWS .NET framework Hide_EXE KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName Cryptographic key Software crashed
1 2 1 11.6 M 31 ZeroCERT

14622 2023-03-21 10:11 RegSvcs.exe  

5aecc5c3cb23cdf6cd97d3f8de866d2b


RAT .NET DLL DLL PE32 PE File
ZeroCERT

14623 2023-03-21 10:09 vbc.exe  

5ccc064218d48040cb306d30cbd83079


RAT Generic Malware Antivirus AntiDebug AntiVM .NET EXE PE32 PE File VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Check virtual network interfaces suspicious process Windows ComputerName Cryptographic key
1 2 1 11.4 M 21 ZeroCERT

14624 2023-03-21 10:09 information3.txt.ps1  

d05f9f87c9f7f3f31fa5993f77d0b76a


Generic Malware Antivirus Check memory unpack itself WriteConsoleW Windows Cryptographic key
1.0 ZeroCERT

14625 2023-03-21 10:09 vbc.exe  

d94d4ff9589037731d7dfb4d9e582b0b


PWS .NET framework RAT .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself DNS
1 3.0 M 40 ZeroCERT