Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14641 2023-03-20 11:23 froiiiiiS54AqSO8x6.exe  

7cd39f854e71cb4fc42e0318032d0c4c


Malicious Library AntiDebug AntiVM PE64 PE File VirusTotal Malware Buffer PE PDB MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key crashed
6.8 M 40 ZeroCERT

14642 2023-03-20 11:22 33333.doc  

bcb9dddc3a3c81e74a45cd2d2ddf7b5f


MS_RTF_Obfuscation_Objects Anti_VM RTF File doc VirusTotal Malware buffers extracted RWX flags setting exploit crash Tofsee Exploit crashed
1 2 1 4.0 M 31 ZeroCERT

14643 2023-03-20 11:21 sqlcmd.exe  

562348e8dbd71f796420599713c73c02


Generic Malware UPX Malicious Library Malicious Packer Antivirus OS Processor Check PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process AppData folder WriteConsoleW Tofsee Windows ComputerName Remote Code Execution Cryptographic key
8 2 2 10.0 M 47 ZeroCERT

14644 2023-03-20 10:19 lap.exe  

aa3321fbcbc033da9e097aacf740fdc5


Malicious Library PE32 PE File VirusTotal Malware PDB unpack itself
1.8 M 26 ZeroCERT

14645 2023-03-20 10:17 cs.ps1  

2d14fc0abc9432b32d79353b89b9c294


Generic Malware Antivirus VirusTotal Malware Check memory unpack itself WriteConsoleW Windows DNS Cryptographic key
1 3.0 M 5 ZeroCERT

14646 2023-03-20 10:15 ChromeFIX_errorMEM.exe  

74b6b35627f6453d787f1c7ea3b9ec33


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself crashed
2.2 M 42 ZeroCERT

14647 2023-03-20 10:13 putty.exe  

503ad71c49fe0f7ad1a9fac50a6a3d66


UPX Malicious Library PE32 PE File VirusTotal Malware Buffer PE PDB Checks debugger buffers extracted unpack itself sandbox evasion ComputerName DNS
2 4.2 M 23 ZeroCERT

14648 2023-03-20 10:12 siga30.exe  

9f84869ee3528a6c79cba4130088571c


Gen1 Emotet UPX Malicious Library CAB PE32 PE File Browser Info Stealer FTP Client Info Stealer AutoRuns PDB suspicious privilege Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Disables Windows Security Collect installed applications AntiVM_Disk VM Disk Size Check installed browsers check Windows Update Browser ComputerName Remote Code Execution DNS Cryptographic key Software crashed
1 10.4 M ZeroCERT

14649 2023-03-20 10:11 clip64.dll  

a55d0c5be5767946dadbc41ff81edfe4


UPX Malicious Library Admin Tool (Sysinternals etc ...) OS Processor Check DLL PE32 PE File VirusTotal Malware PDB Checks debugger unpack itself
2.0 M 57 ZeroCERT

14650 2023-03-20 10:10 dcjXQFieoT.exe  

8ec7b07f258588237cd64e4c842a96f6


Malicious Library AntiDebug AntiVM PE64 PE File VirusTotal Malware Buffer PE PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows DNS Cryptographic key crashed
1 7.0 M 43 ZeroCERT

14651 2023-03-20 10:09 debug.dbg  

217e1ba2d22bd719d94c1faadbfef627


AntiDebug AntiVM ELF VirusTotal Email Client Info Stealer Malware suspicious privilege Checks debugger Creates shortcut unpack itself installed browsers check Browser Email ComputerName
4.4 M 38 ZeroCERT

14652 2023-03-20 10:09 vbc.exe  

badfd20331bbd073b8efe745d71b4797


UPX Malicious Library Malicious Packer PE32 PE File JPEG Format Remcos VirusTotal Malware AutoRuns Malicious Traffic Check memory Creates executable files unpack itself AppData folder human activity check Windows keylogger
1 4 1 6.6 M 49 ZeroCERT

14653 2023-03-20 10:07 711b8121-1755-40dd-8840-d49d5f...  

fb0deff37fe12bbc4f0c1fe21e2d15ef


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware Check memory unpack itself anti-virtualization crashed
2.8 M 22 ZeroCERT

14654 2023-03-20 10:06 vbc.exe  

ca8572b2750b75f7b137637093922152


PWS .NET framework RAT UPX Admin Tool (Sysinternals etc ...) .NET EXE PE32 PE File VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger unpack itself Windows utilities Windows Cryptographic key crashed
6.4 M 52 ZeroCERT

14655 2023-03-20 10:05 FixDefError.exe  

1b664f2a0bede6c47e44ca8c0aad3de7


RAT PWS .NET framework Generic Malware UPX Antivirus .NET EXE PE32 PE File VirusTotal Malware powershell AutoRuns PDB suspicious privilege Malicious Traffic Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process AppData folder WriteConsoleW Tofsee Windows Google ComputerName Cryptographic key
2 5 2 7.6 M 45 ZeroCERT