Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
14821 2023-03-16 09:41 extracted_at_0x1eec6.rtf  

8c202d84a416fe279e0e2c95e29ee52c


MS_RTF_Obfuscation_Objects RWX flags setting
0.8 guest

14822 2023-03-16 09:41 extracted_at_0x1ec6b.rtf  

84c76c12bbecf62148b46d3ff66fa386


MS_RTF_Obfuscation_Objects unpack itself
0.8 guest

14823 2023-03-16 09:40 extracted_at_0x1e851.rtf  

df3bc0a68c18412de9a8540ce3c1897f


MS_RTF_Obfuscation_Objects exploit crash Exploit crashed
1.0 guest

14824 2023-03-16 09:39 extracted_at_0x1e728.rtf  

08db3ffdebccb71d4b851892ef82cfa1


MS_RTF_Obfuscation_Objects RWX flags setting
0.8 guest

14825 2023-03-16 09:39 extracted_at_0x1e452.rtf  

c6caed7668560b25357b306de461f622


MS_RTF_Obfuscation_Objects unpack itself
0.8 guest

14826 2023-03-16 09:38 extracted_at_0x1e350.rtf  

8e2bab606df21b8f017663557938e7e9


MS_RTF_Obfuscation_Objects exploit crash Exploit crashed
1.0 guest

14827 2023-03-16 09:37 extracted_at_0x1e237.rtf  

066f1f76bb3247a3b35b3c6eb7caf04d


MS_RTF_Obfuscation_Objects RWX flags setting
0.8 guest

14828 2023-03-16 09:37 extracted_at_0x1e52a.rtf  

0e8779e8865319c70fca8ecd2f259721


MS_RTF_Obfuscation_Objects unpack itself DNS
1 1.4 guest

14829 2023-03-16 09:36 NMA.exe  

2fc9552b8ba5dd08a67bfce7c35fbcc9


PWS .NET framework RAT Generic Malware Antivirus AntiDebug AntiVM .NET EXE PE32 PE File FormBook Malware download VirusTotal Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process suspicious TLD WriteConsoleW Windows ComputerName DNS Cryptographic key
12 15 3 11.8 M 34 ZeroCERT

14830 2023-03-16 09:35 extracted_at_0x1e9b3.rtf  

96d2c4c6375a8ee6979dbd6e61d861c5


MS_RTF_Obfuscation_Objects exploit crash Exploit crashed
1.0 guest

14831 2023-03-16 09:35 extracted_at_0x1e7d6.rtf  

67b892b52e03a8b04dbc72923f099352


MS_RTF_Obfuscation_Objects RWX flags setting
0.8 guest

14832 2023-03-16 09:35 extracted_at_0x1e6b0.rtf  

064027fc24159236b2e95da971729860


MS_RTF_Obfuscation_Objects unpack itself DNS
1 2.4 guest

14833 2023-03-16 09:33 extracted_at_0x1e3b7.rtf  

420e9702828887859b3bcb24c2b274cb


MS_RTF_Obfuscation_Objects exploit crash Exploit crashed
1.0 guest

14834 2023-03-16 09:33 extracted_at_0x1e2e3.rtf  

1ecfa52b2d3354b966ac77ff3a280134


MS_RTF_Obfuscation_Objects RWX flags setting
0.8 guest

14835 2023-03-16 09:31 extracted_at_0x1e1a9.rtf  

6d2f45e76532ce322d9a18ca33126c2c


MS_RTF_Obfuscation_Objects exploit crash Exploit crashed
1.0 guest