Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14716 2023-03-17 10:02 vbc.exe  

2405e3c0602edc439e913ae0b0894fad


PWS .NET framework RAT UPX .NET EXE PE32 PE File VirusTotal Malware Check memory Checks debugger unpack itself ComputerName
2.4 M 39 ZeroCERT

14717 2023-03-17 10:01 .win32.exe  

d65227a02d2c238246f6e73ba74af070


Malicious Library PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.6 M 33 ZeroCERT

14718 2023-03-17 10:00 act.ocx  

214aa1ab355e70aefadf701a32fecb36


Malicious Library VMProtect PE64 PE File VirusTotal Malware Checks debugger unpack itself
2.4 M 21 ZeroCERT

14719 2023-03-17 09:59 vbc.exe  

30027f61c9de1e89c5314667fae3b647


PWS .NET framework RAT Generic Malware Antivirus SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities suspicious process WriteConsoleW Windows Browser Email ComputerName Cryptographic key Software crashed
13.8 M 31 ZeroCERT

14720 2023-03-17 09:58 vbc.exe  

9dd97b3380058856a357c1f1185459e5


PWS .NET framework RAT Generic Malware Antivirus SMTP PWS[m] KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed
11.6 M 39 ZeroCERT

14721 2023-03-17 09:57 l.exe  

8d84e57656a59231cb00e35857f52f5a


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.8 M 43 ZeroCERT

14722 2023-03-17 09:56 vbc.exe  

d48f1e07e2a3a115b8607be5d66654f6


PWS .NET framework RAT Generic Malware Antivirus AntiDebug AntiVM .NET EXE PE32 PE File FormBook Malware download VirusTotal Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key
8 10 2 11.2 M 29 ZeroCERT

14723 2023-03-17 09:56 c.exe  

4d9c620616b98cdd72968e60b3076500


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.8 M 47 ZeroCERT

14724 2023-03-17 09:55 vbc.exe  

96cafe7de7304d358d586ce231fda4e1


PWS .NET framework RAT Generic Malware Antivirus SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities suspicious process WriteConsoleW Windows Browser Email ComputerName Cryptographic key Software crashed
13.2 M 30 ZeroCERT

14725 2023-03-17 09:53 soft.exe  

d32379fe6c71914d1e060b828c39d69f


PWS .NET framework RAT KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces IP Check Tofsee Windows Browser Email ComputerName Cryptographic key Software crashed
1 2 1 12.0 M 36 ZeroCERT

14726 2023-03-17 09:52 lish.exe  

0b39012e51e6d52ddc49dd9676ba9920


Emotet Gen2 UPX Malicious Library Malicious Packer OS Processor Check PE32 PE File DLL VirusTotal Malware Check memory buffers extracted WMI Creates executable files unpack itself AppData folder Tofsee ComputerName Remote Code Execution crashed
2 2 1 5.2 M 46 ZeroCERT

14727 2023-03-17 09:51 brg.exe  

c10bf20ea8b2665099d89da5d09b2d7b


MPRESS PE32 PE File VirusTotal Malware Check memory ICMP traffic Collect installed applications sandbox evasion anti-virtualization installed browsers check Browser ComputerName Remote Code Execution DNS
1 6.8 M 38 ZeroCERT

14728 2023-03-17 09:51 75171549446483190015.bin  

b5a83bb2dd5b3521876b6b95d9f7ca0c


Gen1 UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware RWX flags setting unpack itself Windows utilities WriteConsoleW Windows ComputerName crashed
4.0 M 47 ZeroCERT

14729 2023-03-17 09:50 vbc.exe  

b12fe6628b45145916f3d8c86238078c


Gen2 Gen1 UPX Malicious Library PE32 PE File VirusTotal Malware PDB
1 2.2 M 45 ZeroCERT

14730 2023-03-17 09:48 97..........................97...  

9d7082961f5f3573a91e9b74d03e9fae


MS_RTF_Obfuscation_Objects RTF File doc Malware download VirusTotal Malware Malicious Traffic RWX flags setting exploit crash Windows Exploit DNS crashed Downloader
1 1 7 4.6 M 32 ZeroCERT