Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14686 2023-03-17 18:04 2.exe  

53e1934061876c52e6fa0c9243d32d9d


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 45 ZeroCERT

14687 2023-03-17 18:02 3.exe  

9549168790bc8b01d0c889fccb01bd73


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 30 ZeroCERT

14688 2023-03-17 18:02 68..................68...........  

86fc671549dae9122a212b2d0866518d


MS_RTF_Obfuscation_Objects RTF File doc Malware download VirusTotal Malware Malicious Traffic exploit crash unpack itself Windows Exploit DNS crashed Downloader
1 2 7 4.4 M 25 ZeroCERT

14689 2023-03-17 18:00 EBSMEDIA_protected.exe  

97bf48e51ff002f6d9f5e778e52d8319


RAT Generic Malware task schedule Malicious Packer Antivirus AntiDebug AntiVM .NET EXE PE32 PE File VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files ICMP traffic unpack itself Windows utilities suspicious process AppData folder WriteConsoleW Windows ComputerName DNS Cryptographic key
1 14.8 M 51 ZeroCERT

14690 2023-03-17 18:00 1.exe  

e04c47828b28e33be2b5ebc75172901b


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 27 ZeroCERT

14691 2023-03-17 17:58 6.exe  

210e93b80b868f6aebf712e0da9edf5b


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 31 ZeroCERT

14692 2023-03-17 17:58 HDU3.exe  

04694e5e78d0a3dcab0bfea22aa90cfe


Malicious Packer PE64 PE File VirusTotal Malware Tofsee crashed DoTNet
2 3 2.0 M 31 ZeroCERT

14693 2023-03-17 17:57 vbc.exe  

f35d8958edaab270d6c621bb96e395fc


Malicious Library AntiDebug AntiVM PE64 PE File FormBook Malware download VirusTotal Malware Buffer PE PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key
18 19 2 17 8.2 M 25 ZeroCERT

14694 2023-03-17 17:56 8.exe  

43fb0bb43cd8878e170066a86c57b8ca


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 33 ZeroCERT

14695 2023-03-17 17:56 DefenderSecurity.exe  

0fbf332153113f4b0dfd105244cba305


RAT .NET EXE PE32 PE File VirusTotal Malware DNS
1 2.8 M 47 ZeroCERT

14696 2023-03-17 17:55 reycrytp.exe  

e5b2d160f8ba238317a89cd4ed6660b5


RAT task schedule UPX Malicious Library Malicious Packer AntiDebug AntiVM OS Processor Check .NET EXE PE32 PE File VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted ICMP traffic unpack itself ComputerName DNS crashed
1 10.8 M 29 ZeroCERT

14697 2023-03-17 17:54 7.exe  

de5666a98bc07594a7e963d1b41964e7


Generic Malware Antivirus .NET EXE PE32 PE File PowerShell VirusTotal Malware powershell suspicious privilege MachineGuid Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Tofsee Windows Discord ComputerName DNS Cryptographic key Downloader
1 2 3 10.0 M 34 ZeroCERT

14698 2023-03-17 17:52 vbc.exe  

0d6f619554c6de06992c444d8b3c9a74


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB
1 1.4 M 20 ZeroCERT

14699 2023-03-17 17:51 ASDASD.exe  

38b7f433a65cdc9b846b3bff842c3bb1


RedLine stealer[m] Malicious Packer PWS[m] BitCoin AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI unpack itself Collect installed applications Check virtual network interfaces installed browsers check Tofsee Windows Browser ComputerName DNS Cryptographic key Software crashed
2 3 2 13.2 M 49 ZeroCERT

14700 2023-03-17 17:50 SecurityHelath_protected.exe  

1cf38074d1eec7ff196912f6b2d8c0c1


RAT Generic Malware task schedule Malicious Packer Antivirus AntiDebug AntiVM .NET EXE PE32 PE File VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process AppData folder WriteConsoleW Windows ComputerName Cryptographic key
12.4 M 45 ZeroCERT