Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14746 2023-03-16 10:58 Sammenstyrtningens242.vbs  

a75c770acab8755ebc617f8925eff3b4


Generic Malware Antivirus Malware powershell suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut unpack itself Windows utilities suspicious process suspicious TLD anti-virtualization Windows ComputerName DNS Cryptographic key crashed
2 3 10.6 ZeroCERT

14747 2023-03-16 10:56 Contactus.html  

73aa630ae71d55aef8d9f2101ef3bb1a


AntiDebug AntiVM PNG Format MSOffice File JPEG Format VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed
2 3 4.2 5 ZeroCERT

14748 2023-03-16 10:54 1.html  

8f1f9a93892188a5fa472ff664bbf19e


AntiDebug AntiVM MSOffice File Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed
2 3.8 ZeroCERT

14749 2023-03-16 10:54 vbc.exe  

5fd4d5c90658e442b969384b80036b7b


UPX Malicious Library PE32 PE File FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself
18 20 3 4.4 M 38 ZeroCERT

14750 2023-03-16 10:51 1603.one  

3267ae8154776913b0032a6806fdb9c3

VirusTotal Malware crashed
0.6 8 ZeroCERT

14751 2023-03-16 10:49 boy1start.ps1  

c0aa6a02799611928896463d8c6a324d


NPKI Formbook RAT Hide_EXE Generic Malware Antivirus SMTP PWS[m] KeyLogger PDF AntiDebug AntiVM .NET EXE PE32 PE File ZIP Format Browser Info Stealer Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process AntiVM_Disk sandbox evasion WriteConsoleW IP Check VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger
7 3 6 21.0 M 9 ZeroCERT

14752 2023-03-16 10:44 persis.exe  

44141a0e32ba57ab5c42a7d18a3745ce


PE64 PE File VirusTotal Malware Check memory Checks debugger unpack itself
2.4 M 47 ZeroCERT

14753 2023-03-16 10:44 st-start.ps1  

1ee009f6414309c4c1c8db3fbd83861d


NPKI Formbook RAT Hide_EXE Generic Malware Antivirus KeyLogger PDF AntiDebug AntiVM ZIP Format .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process AntiVM_Disk sandbox evasion WriteConsoleW VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software crashed
6 1 1 19.0 M 7 ZeroCERT

14754 2023-03-16 10:41 vbc.exe  

493798b24ab2433b6d96c2d82ade8ab8


Loki_b Loki_m RAT UPX Socket DNS PWS[m] AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs AntiVM_Disk VM Disk Size Check installed browsers check Browser Email ComputerName DNS Software
1 1 7 13.8 M 35 ZeroCERT

14755 2023-03-16 10:38 pankotro3.1.exe  

8c8ee58eacb110d5598f723ecd7e948c


UPX Malicious Library Malicious Packer PE32 PE File VirusTotal Malware AutoRuns Check memory Creates executable files ICMP traffic unpack itself AppData folder Windows DNS DDNS
2 2 6.4 M 36 ZeroCERT

14756 2023-03-16 10:36 .win32.exe  

c1360cce1de01199925aade09545577d


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware PDB unpack itself Remote Code Execution
2.4 M 53 ZeroCERT

14757 2023-03-16 10:34 vbc.exe  

0e8ee45f8cf246835f8db619516ad340


RAT Generic Malware UPX Antivirus SMTP PWS[m] KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName Cryptographic key Software crashed
1 2 1 15.6 M 30 ZeroCERT

14758 2023-03-16 10:32 2-1_2023-03-14_23-04.exe  

097d8371eea941a8f7191509d8dc1b69


UPX Malicious Library OS Processor Check PE32 PE File VirusTotal Malware unpack itself Remote Code Execution
2.0 M 35 ZeroCERT

14759 2023-03-16 10:31 parmashdy3.1.exe  

bdfb2c5a346d6684824b78499b36b88d


UPX Malicious Library PE32 PE File FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself suspicious TLD
4 8 1 1 4.4 M 37 ZeroCERT

14760 2023-03-16 10:29 Hack Bold Italic Nerd Font Com...  

715b054e75bfe030884f63623b3715e7


AntiDebug AntiVM Check memory unpack itself
1.0 guest