Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14626 2023-03-21 10:07 curriculum_vitae-copie.vbs  

61dd16fa14a6fd952a3422de967ebec1


Generic Malware Antivirus AntiDebug AntiVM PowerShell VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key
6.2 4 ZeroCERT

14627 2023-03-21 10:06 laoxiang.exe  

a6a9abf50eb980d12622e14c237a9f37


Malicious Library PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself AntiVM_Disk sandbox evasion anti-virtualization VM Disk Size Check human activity check Browser DNS crashed
1 6.6 M 43 ZeroCERT

14628 2023-03-21 10:06 AlCapone99.exe  

3db6d94b8df4916aa7cb0d67f2bba3f6


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself
2.0 M 45 ZeroCERT

14629 2023-03-21 07:44 LService.dat  

513c34815b063e50d6f18c91366ff349


RAT .NET DLL DLL PE32 PE File VirusTotal Malware PDB
0.6 1 ZeroCERT

14630 2023-03-21 07:44 LServiceHandler.jpg  

2b8ed230651d29c3f4a7a330b742bbdd


.NET EXE PE32 PE File VirusTotal Malware suspicious privilege Check memory Checks debugger ICMP traffic unpack itself Windows utilities suspicious process AppData folder Windows
4.0 8 ZeroCERT

14631 2023-03-20 18:13 zxcvb.exe  

688774feec1cc9685acaece804dc7a26


PWS .NET framework RAT UPX OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.2 M 50 ZeroCERT

14632 2023-03-20 18:13 photo_004.exe  

60bd74449157229bda4bec8234885f7f


Generic Malware UPX Malicious Library OS Processor Check PE32 PE File unpack itself Remote Code Execution
1.2 ZeroCERT

14633 2023-03-20 18:05 File_pass1234.zip  

477411ecd609489540e26607c6f44ac2


ZIP Format VirusTotal Malware
0.4 M 1 ZeroCERT

14634 2023-03-20 14:29 D0C93848394-Spodogenic.vbs  

218ddf74d466267211be24dac160e93a


Generic Malware Antivirus VirusTotal Malware suspicious privilege Check memory Checks debugger buffers extracted WMI Creates shortcut unpack itself Windows utilities suspicious process Windows ComputerName Cryptographic key
7.4 M 2 ZeroCERT

14635 2023-03-20 14:29 43444VBS NO STARTUP.vbs  

7b470a829fac968e56744f805ab85efc


Generic Malware Antivirus PowerShell VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key
5.4 11 ZeroCERT

14636 2023-03-20 11:29 chat-gpt.exe  

65c2ae916c616382ed8d8df33aa50bbc


Generic Malware UPX Malicious Library Malicious Packer Antivirus OS Processor Check PE64 PE File VirusTotal Malware powershell PDB suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process Windows ComputerName Cryptographic key
4.4 36 ZeroCERT

14637 2023-03-20 11:29 St4_soft.exe  

1431d295525534f244dd34a8a311b87f


Emotet UPX Malicious Library Anti_VM Malicious Packer Create Service Socket ScreenShot DNS PWS[m] KeyLogger Escalate priviledges persistence BitCoin AntiDebug AntiVM OS Processor Check PE64 PE File VirusTotal Email Client Info Stealer Malware MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities suspicious process malicious URLs Ransomware Windows Email ComputerName DNS crashed
1 11.6 45 ZeroCERT

14638 2023-03-20 11:28 os2.exe  

ceea1dc43163e1ab1bda2fbbac5cfda8


Gen1 Emotet Generic Malware UPX Malicious Library Malicious Packer Anti_VM Admin Tool (Sysinternals etc ...) OS Processor Check PE64 PE File DLL PE32 ZIP Format VirusTotal Malware Check memory Creates executable files AppData folder
2.4 M 21 ZeroCERT

14639 2023-03-20 11:26 photo_004.exe  

860db1940e9714b45f96f2a4d67909d0


UPX Malicious Library PE32 PE File PDB unpack itself
1.0 M ZeroCERT

14640 2023-03-20 11:24 lend122.exe  

7cf6b1d778d8e768db95c09e6896c63c


UPX Malicious Library PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.8 M 54 ZeroCERT