Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14671 2023-03-20 09:47 cockkieeAC.exe  

50f31873c5df2e169f1ec5ebab8ba2c3


NPKI Generic Malware UPX Malicious Library Malicious Packer OS Processor Check PE64 PE File VirusTotal Malware crashed
1.0 M 22 ZeroCERT

14672 2023-03-20 09:47 f2f16bc7-e50f-45d2-9d83-c860d5...  

f5d957a42f578847664cacb8a4c3d695


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware Check memory RWX flags setting unpack itself anti-virtualization DNS crashed
1 3.8 M 20 ZeroCERT

14673 2023-03-20 09:45 bdr.exe  

24604438f2cb5fcbda87b9fe3f817bcb


Loki_b Loki_m RAT UPX Code injection PWS[m] AntiDebug AntiVM OS Processor Check .NET EXE PE32 PE File VirusTotal Malware Telegram MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself malicious URLs Tofsee ComputerName DNS
4 5 4 11.0 M 28 ZeroCERT

14674 2023-03-20 09:45 eazy.exe  

0a937838141cf6acfb3d63ae2b4673b3


RAT KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName Cryptographic key Software crashed
1 2 1 12.2 M 50 ZeroCERT

14675 2023-03-20 09:43 neee.exe  

99f16ab6ab670935b5aa5c84b1b5f6bd


UPX Malicious Library Antivirus OS Processor Check PE32 PE File Malware download VirusTotal Malware AutoRuns Malicious Traffic Creates executable files RWX flags setting unpack itself AppData folder Windows ComputerName DNS crashed
2 1 1 7.6 M 45 ZeroCERT

14676 2023-03-20 09:42 w6auj9ii3rp.exe  

57e3fc905b5cb1811f155ec4aef82795


RedLine stealer[m] UPX Malicious Library Malicious Packer AntiDebug AntiVM OS Processor Check PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Windows Browser ComputerName DNS Cryptographic key Software crashed
1 10.0 M 46 ZeroCERT

14677 2023-03-20 07:56 unknown.exe  

b61e626bf11cf496d6cb2dd7e470551b


PWS .NET framework RAT UPX Malicious Library Malicious Packer OS Processor Check .NET EXE PE32 PE File Malware download AsyncRAT NetWireRC Malware DNS DDNS
2 3 0.4 ZeroCERT

14678 2023-03-19 13:52 index_8ceba61edb30c637224d774a...  

5ecb336df87a04025f48967559d19151

crashed
0.2 BRY

14679 2023-03-17 20:13 trxV9376  

c901c8089c5e017f8e9b4b15c8ef154f


UPX Malicious Library Malicious Packer OS Processor Check DLL PE64 PE File VirusTotal Malware Checks debugger unpack itself suspicious process sandbox evasion Remote Code Execution
3.6 M 14 ZeroCERT

14680 2023-03-17 18:13 file.zip  

26920d49e119bb1dc4c206aba46c0dcd


ZIP Format VirusTotal Malware
1 0.4 M 9 ZeroCERT

14681 2023-03-17 18:11 4.exe  

3eaca76030647d883ca5c109b43acc76


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 30 ZeroCERT

14682 2023-03-17 18:09 02..................02...........  

984eb11b3f5de9345be40b9fdf432400


MS_RTF_Obfuscation_Objects RTF File doc VirusTotal Malware RWX flags setting
2.4 M 29 ZeroCERT

14683 2023-03-17 18:08 vbc.exe  

13a237b2f7042de8f7585c54d2432b6c


RAT Generic Malware Antivirus AntiDebug AntiVM .NET EXE PE32 PE File FormBook Malware download VirusTotal Malware powershell PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key
7 10 2 11.4 M 21 ZeroCERT

14684 2023-03-17 18:07 lastdc.exe  

2d0cc7c5c9953f0b7c91b26533f93cbc


RAT North Korea Generic Malware UPX Antivirus ScreenShot Code injection PWS[m] AntiDebug AntiVM .NET EXE PE32 PE File GIF Format VirusTotal Malware Buffer PE AutoRuns PDB MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself human activity check Windows ComputerName DNS
1 11.8 M 31 ZeroCERT

14685 2023-03-17 18:05 ascrypt.exe  

36e4122b5fdd4e5b802aa7c109c354fb


RAT task schedule UPX Malicious Library Malicious Packer AntiDebug AntiVM OS Processor Check .NET EXE PE32 PE File VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself ComputerName DNS crashed
1 10.0 M 29 ZeroCERT