SHA256 Hash File type Added Source Yara Hits
PE32+ 2020-07-07 22:37:16User Submission YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsConsole YRP/HasRichSignature [+]
PE32 2020-06-27 10:33:16User Submission YRP/Armadillo_v2xx_CopyMem_II_additional YRP/IsPE32 YRP/IsConsole YRP/HasRichSignature [+]
ASCII 2019-10-26 13:01:30User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api YRP/powershell YRP/domain [+]
ASCII 2019-10-26 13:01:03User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
ASCII 2019-10-26 13:00:45User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ASCII 2019-10-26 12:42:57User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api YRP/powershell YRP/domain [+]
ASCII 2019-10-26 12:40:58User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ASCII 2019-10-26 12:40:54User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
ASCII 2019-10-25 20:24:07User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api YRP/powershell YRP/domain [+]
ASCII 2019-10-25 20:24:07User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api YRP/powershell YRP/domain [+]
ASCII 2019-10-25 20:22:43User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ASCII 2019-10-25 20:22:42User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ASCII 2019-10-25 20:22:34User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
ASCII 2019-10-25 20:22:34User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
data 2019-10-25 20:21:42User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect YRP/webshell_iMHaPFtp_2 [+]
ASCII 2018-06-08 15:10:19User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api YRP/powershell YRP/domain [+]
ASCII 2018-06-08 15:10:18User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
PE32+ 2018-05-24 00:58:05User Submission CuckooSandbox/vmdetect YRP/webshell_iMHaPFtp_2 YRP/webshell_caidao_shell_guo YRP/webshell_cihshell_fix [+]
PE32 2018-03-07 03:50:26http://106.0.5.173/wce.exe YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 YRP/IsConsole [+]
ELF 2017-10-16 01:37:29User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
ELF 2017-10-16 01:33:40User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
ELF 2017-10-16 01:20:43User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]