MalShare

SHA256 Hash	File type	Added	Source	Yara Hits
c27c16af4d315e2022f2bda8d6f7ed9802ca944c3005d70a08f7ca9763b31b20	PE32	2022-03-20 23:16:49	User Submission	YRP/VC8_Microsoft_Corporation YRP/Armadillo_v4x YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/HasRichSignature YRP/maldoc_find_kernel32_base_method_1 YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Browsers YRP/WMI_strings YRP/DebuggerException__SetConsoleCtrl YRP/ThreadControl__Context YRP/DebuggerCheck__MemoryWorkingSet YRP/anti_dbg YRP/inject_thread YRP/network_tcp_listen YRP/network_smtp_raw YRP/network_dropper YRP/network_tcp_socket YRP/network_dns YRP/network_dga YRP/escalate_priv YRP/screenshot YRP/keylogger YRP/sniff_audio YRP/migrate_apc YRP/spreading_file YRP/win_mutex YRP/win_registry YRP/win_token YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Advapi_Hash_API YRP/CRC32_poly_Constant YRP/CRC32_table YRP/MD5_Constants YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/SHA512_Constants YRP/RijnDael_AES YRP/BASE64_table YRP/Str_Win32_Winsock2_Library YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API YRP/suspicious_packer_section YRP/GenerateTLSClientHelloPacket_Test
d540d9496ea06143208188f5932ace71027f6cd1e9436321cbe7cbcda65977a7	JPEG	2022-03-20 23:13:35	User Submission	YRP/domain YRP/url YRP/contentis_base64 YRP/Big_Numbers1
11fde3357b278e91628133d2e481b0e3a11e228a9e1151c4a175fa922ec5ee65	PE32	2022-03-20 23:00:43	User Submission	YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI [+] YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1
59ea7066c5ea6dc18d7139bb8773375246fdaa93001567a4cf3abf356e9d7b34	PE32	2022-03-20 23:00:37	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/HasDebugData YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Big_Numbers3 YRP/Big_Numbers4
be4ebe13d798c7207401ebca2b8657ede3c4ef9d0250992d32b854e023e1eb9c	PE32	2022-03-20 23:00:24	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/HasDebugData YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Big_Numbers3 YRP/Big_Numbers4
8426fd32ca58e7c77d51f9ee9f13dd84e7ef07ee1fe028b55fde07de922e905b	PE32	2022-03-20 23:00:12	User Submission	YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/maldoc_find_kernel32_base_method_1 YRP/domain YRP/contentis_base64 YRP/Browsers YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/ThreadControl__Context YRP/anti_dbg YRP/disable_dep YRP/inject_thread YRP/network_dropper YRP/network_tcp_socket YRP/network_dns YRP/escalate_priv YRP/keylogger YRP/sniff_audio YRP/cred_ff YRP/win_mutex YRP/win_registry YRP/win_token YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Big_Numbers3 YRP/Prime_Constants_long YRP/RijnDael_AES YRP/Str_Win32_Winsock2_Library YRP/GenerateTLSClientHelloPacket_Test
7d26b8334b4dbd2abb9b4240a8638d20bafaf93d9eaff13a494bae2a45971211	PE32	2022-03-20 22:32:59	User Submission	YRP/Borland_Delphi_40_additional YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ [+] YRP/Borland_Delphi_Setup_Module YRP/Borland_Delphi_40 YRP/Borland_Delphi_v40_v50 YRP/BobSoft_Mini_Delphi_BoB_BobSoft_additional YRP/Borland_Delphi_v60_v70 YRP/Borland_Delphi_v30 YRP/Borland_Delphi_DLL YRP/Borland YRP/BobSoftMiniDelphiBoBBobSoft YRP/IsPE32 YRP/IsWindowsGUI YRP/borland_delphi YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Delphi_FormShow YRP/Delphi_CompareCall YRP/Delphi_Copy YRP/Delphi_StrToInt YRP/Delphi_DecodeDate
d7112a1e1c68c366c05bbede9dbe782bb434231f84e5a72a724cc8345d8d9d13	ELF	2022-03-20 21:00:22	User Submission	YRP/domain YRP/url YRP/contentis_base64 YRP/Big_Numbers1 [+] YRP/Big_Numbers2 YRP/Big_Numbers3 YRP/Big_Numbers4 YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/SHA512_Constants YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG YRP/BASE64_table
73a730cc05e127b85ff61ee79abe22e97c3bd8e607e410e8537896fd414bc748	PE32	2022-03-20 20:07:14	User Submission	YRP/Borland_Delphi_40_additional YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ [+] YRP/Borland_Delphi_Setup_Module YRP/Borland_Delphi_40 YRP/Borland_Delphi_v40_v50 YRP/BobSoft_Mini_Delphi_BoB_BobSoft_additional YRP/Borland_Delphi_v60_v70 YRP/Borland_Delphi_v30 YRP/Borland_Delphi_DLL YRP/Borland YRP/BobSoftMiniDelphiBoBBobSoft YRP/IsPE32 YRP/IsWindowsGUI YRP/borland_delphi YRP/domain YRP/url YRP/contentis_base64 YRP/network_tcp_socket YRP/network_dns YRP/screenshot YRP/keylogger YRP/win_mutex YRP/win_registry YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/Advapi_Hash_API YRP/CRC32_poly_Constant YRP/MD5_Constants YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG YRP/BASE64_table YRP/Delphi_FormShow YRP/Delphi_CompareCall YRP/Delphi_Copy YRP/Delphi_StrToInt YRP/Delphi_DecodeDate YRP/Str_Win32_Winsock2_Library
f6829a8049b98e75ba6be8514cd5c76059fbf7ba042bbd7a662cc8d69288ffe3	XML	2022-03-20 19:10:22	User Submission	YRP/domain YRP/url YRP/contentis_base64 YRP/Big_Numbers1
ff301b3295959a3ac5f3d0a5ea0d9f0aedcd8da7c4207b18f4bbb6ddaa0cdf22	Microsoft	2022-03-20 16:43:01	User Submission	YRP/domain YRP/url YRP/contentis_base64 YRP/Big_Numbers1
fdeac1758dae3e3811f020f3d9d44fb984c4397c924c4c8e880f4e41fdf130f7	PE32	2022-03-20 16:40:24	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
fa1d76b3b91067daa21b5b953ddd36b570e033b1f95687e5482eec26afb79ee2	PE32	2022-03-20 16:31:43	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
f9bd72771da7917018cfca8a80bb7dad2e8e029aedcd8851c320256243c5e9db	PE32	2022-03-20 16:30:42	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
f9b682245ad0fe442e1bbe331f67b8c6a6241aac9fb2aa727b020a4f0a897ce2	Microsoft	2022-03-20 16:30:36	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
f89735262eafaafe7d296c51043f3e0b0b499f06f25021b4bcad470674fbbdb6	PE32	2022-03-20 16:27:51	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
f70cd1568d92c035119e5bb9e8bf1ada495ba6f31c6d042ac1d98ac3060d59a1	PE32	2022-03-20 16:24:51	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Dropper_Strings YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
0c2ade2993927f6de828e30c07156c19751b55650a05c965631ca0ea1c983498	PE32	2022-03-20 16:22:10	User Submission	YRP/Visual_Cpp_2003_EXE_Microsoft YRP/IsPE32 YRP/IsWindowsGUI YRP/HasRichSignature [+] YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/screenshot YRP/keylogger YRP/win_mutex YRP/win_registry YRP/win_files_operation YRP/Big_Numbers1 YRP/Advapi_Hash_API YRP/with_sqlite
f4deda99ff8cffa3828ca330aab63cfc809bcd89f7ad5e8d9ea25a4ed8a172e6	Microsoft	2022-03-20 16:20:35	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
f2209224cc5688ee6f73d6d5977b9bdba3996af5d4eb28b523910e4ffb84d313	PE32	2022-03-20 16:15:41	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
f1721df32789a9e1551010e0fc30caa050366f4c949c1f73fcf317e85e0ecb35	Microsoft	2022-03-20 16:14:03	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
ec5ddee4daf077b22c49a35f10c16a4c2f191e3a125ce1b3f26b01fe7ad619cf	PE32	2022-03-20 16:02:41	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
ec36d3a5666741a9a9a44f9f05a212df0f530c4cdd47f8405701e2d85933be0e	Composite	2022-03-20 16:02:30	User Submission	YRP/domain YRP/url YRP/contentis_base64 YRP/maldoc_OLE_file_magic_number [+] YRP/Big_Numbers1
e803f10811608ea8e2179185e8c334b22b71097e3a7ec5b56909e3779834ed9b	PE32	2022-03-20 15:53:36	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CAP_HookExKeylogger
e65f3e7d58650711f81d06e50e53ced4b636f08df0eed8019d7927e17fec9580	PE32	2022-03-20 15:50:23	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/System_Tools YRP/Big_Numbers1
d95da3b2e36df903e14aab07df9dfbc266028bd4d110d8607d10f06aa927cb75	PE32	2022-03-20 15:21:05	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
d90041e6b2a7deca5936829d8a2f6b9c190abcab6c81c3a99b22d41ed6fffbb0	PE32	2022-03-20 15:20:29	User Submission	CuckooSandbox/vmdetect YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/VMWare_Detection YRP/vmdetect YRP/network_smtp_dotNet YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_hook YRP/Big_Numbers0 YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/MD5_Constants YRP/CAP_HookExKeylogger
d8fc308f94016f51cafa022193fbfe26778451b981c413f8f73206730599b466	Microsoft	2022-03-20 15:20:23	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
d5ea8cc6a5ca0ab9091f4109b182e0c059b4380d0d87604e5297b07a27a006c3	PE32	2022-03-20 15:14:36	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/VMWare_Detection YRP/Sandboxie_Detection YRP/win_mutex YRP/Big_Numbers0 YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/Njrat
d5a6e15de070836be0fd7d0cf2cde5957a4db1ce81224c5391d45c10bfd0eb4e	PE32	2022-03-20 15:14:18	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
d25f524faf11aee50288503f06409544fe07433df48455e89b2376de13255ff5	PE32	2022-03-20 15:07:27	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
d21916b27b5efdd803201119c97e5318019fff9715a428ec3ca7ded7c86e6e4c	Microsoft	2022-03-20 15:06:52	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
ca822b28a868bb52c0e59bf09093cf38dedb0a09c82718d3979980f13c02d1b9	Microsoft	2022-03-20 14:51:07	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
c890bc2e899bdb9c2a7cbe9ab52b852c5ea6832e44615f2afc66ab47925866d2	PE32	2022-03-20 14:47:19	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/VMWare_Detection YRP/Sandboxie_Detection YRP/Dropper_Strings YRP/WMI_strings YRP/win_mutex YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/Njrat
c5df357d59ac7d72cd832fe5ecf5955854be3e26862613c3ffa9d47d394af736	PE32	2022-03-20 14:42:03	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETDLLMicrosoft YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/HasDebugData YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/network_dns YRP/android_meterpreter YRP/Big_Numbers1 YRP/CRC32_poly_Constant
c3128793b18ad95cb72ee25c7587f0640e80da411384e847acc6af0450dcdde2	Microsoft	2022-03-20 14:36:19	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
c30feebc86f3a83c66c8ef49ef5d9b4a48f462f62545f2e7038d36a0005bb983	PE32	2022-03-20 14:36:17	User Submission	YRP/NETDLLMicrosoft YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE [+] YRP/IsWindowsGUI YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
c24862e85c78831c5c263e6f8934e9b75c0b39015bd59efe9382af47c8bc125c	Microsoft	2022-03-20 14:33:59	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
bf79a1b5281f5e1daa76040f07ae77ec623afecc33d8736bc504df901c0186d0	Microsoft	2022-03-20 14:28:45	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
bf720acfb3a2f503222eae5a572791a0230dbf4ce5ed2c02b4f8dda85341c4a9	ASCII	2022-03-20 14:28:38	User Submission	YRP/powershell YRP/domain YRP/IP YRP/url [+] YRP/contentis_base64 YRP/Antivirus YRP/Big_Numbers1 FlorianRoth/Suspicious_PowerShell_WebDownload_1
beafa62df10a1c9a82e89bab66b87fe1b2da65cbd553676f8c4358d5a92d3229	MS-DOS	2022-03-20 14:27:04	User Submission	YRP/IsPE32 YRP/IsWindowsGUI YRP/HasModified_DOS_Message YRP/maldoc_getEIP_method_1 [+] YRP/domain YRP/contentis_base64 YRP/Big_Numbers1 FlorianRoth/DragonFly_APT_Sep17_3
bc96a7521bd576710b531a2b2dd6d7f4b4a0854f6ef8285ec83e0515d27ff299	PE32	2022-03-20 14:22:41	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant
bc871af417ff9adfdd9df5d1b9a34f0a989e4ae058e7009780d4c297ce3de5a0	Microsoft	2022-03-20 14:22:24	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
bb44a88339e83bc2ecbd06edef1acf6c54e66c4c4922005a67c27f970f717075	PE32	2022-03-20 14:19:29	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/contentis_base64 YRP/VMWare_Detection YRP/Sandboxie_Detection YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/network_smtp_dotNet YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32b_poly_Constant YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/CAP_HookExKeylogger
b8f073052b8bf06d12ff4cf8182bf75c91248ef19f906ca6213e8cb4cd46ca00	Microsoft	2022-03-20 14:14:50	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
b64c3249144683345453feac5f2c3ed3374d33a8eaf6bf4e30299e55a1bf1fca	ASCII	2022-03-20 14:08:57	User Submission	YRP/powershell YRP/domain YRP/IP YRP/url [+] YRP/contentis_base64 YRP/Antivirus YRP/Big_Numbers1 FlorianRoth/Suspicious_PowerShell_WebDownload_1
b633c0e44bd60afbcf59a3802cf2703b1604eae7666c411e08ba2a6b31edcbda	PE32	2022-03-20 14:08:38	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
b32bc6d8b506b75ee68f7184a0a84eb6afc24b4514d9073b55c67d7b95354553	PE32	2022-03-20 14:01:01	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/contentis_base64 YRP/VMWare_Detection YRP/Sandboxie_Detection YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/network_smtp_dotNet YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32b_poly_Constant YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/CAP_HookExKeylogger
b15a0753ec6cb926410d9731ade30e67158ea3044911c40d5823ef88a278d2a4	Microsoft	2022-03-20 13:57:21	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
b0cda517ace59b7d9be1d0dc49c2d85ff42fb780d86ee2623a206663486ed7c6	PE32	2022-03-20 13:56:08	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
ab805d4c1f86746cea0dea2ea274356015590fff0a7ee78cd0c1d26b98d1762d	PE32	2022-03-20 13:43:36	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
aab2c9e64ba3bc97562152cd9fce47d31093b6ae38b6ca0cffc35510a53b57e6	Microsoft	2022-03-20 13:41:49	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
a934394936e2250fcdf2140235f1948fa86f49264a6d345289061b334c7037d9	PE32	2022-03-20 13:38:11	User Submission	CuckooSandbox/embedded_macho YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/HasDebugData YRP/HasRichSignature YRP/maldoc_find_kernel32_base_method_1 YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Browsers YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/network_http YRP/win_mutex YRP/win_files_operation YRP/Big_Numbers0 YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/RijnDael_AES YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG YRP/BASE64_table YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API YRP/Str_Win32_Http_API YRP/with_sqlite
a87a4a43ea99fea877e46a92cf90434b15667e7ef463da04640af1bb5116c7ca	Microsoft	2022-03-20 13:36:05	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
a817460e323cbc8b09a04da7916989191b427835cad2e566d2aa5fc4e166fcd3	PE32	2022-03-20 13:34:47	User Submission	YRP/Borland_Delphi_40_additional YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ [+] YRP/Borland_Delphi_Setup_Module YRP/Borland_Delphi_40 YRP/Borland_Delphi_v40_v50 YRP/BobSoft_Mini_Delphi_BoB_BobSoft_additional YRP/Borland_Delphi_v60_v70 YRP/Borland_Delphi_v30 YRP/Borland_Delphi_DLL YRP/Borland YRP/BobSoftMiniDelphiBoBBobSoft YRP/IsPE32 YRP/IsWindowsGUI YRP/borland_delphi YRP/domain YRP/contentis_base64 YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Delphi_FormShow YRP/Delphi_CompareCall YRP/Delphi_Copy YRP/Delphi_StrToInt YRP/Delphi_DecodeDate
a7c66c4f2c290ea9dfd03b06c9d196448e81a81dbf85f2e85b34858c5dcdb85d	PE32	2022-03-20 13:34:15	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
a76aa17b3c66f1bc861ff329710e0b94c0a9fdefa9e3c1b3e6d1d8410d85b679	Microsoft	2022-03-20 13:33:12	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
a68d17bd5d8d8424bc83b5686307407df569acdd125aaa5f20952cfe40876c20	PE32	2022-03-20 13:31:34	User Submission	YRP/Visual_Cpp_2005_Release_Microsoft YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/HasOverlay YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/System_Tools YRP/Dropper_Strings YRP/DebuggerCheck__QueryInfo YRP/anti_dbg YRP/win_mutex YRP/win_registry YRP/win_files_operation YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CRC32_table YRP/BLOWFISH_Constants YRP/MD5_Constants YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/SHA512_Constants YRP/WHIRLPOOL_Constants YRP/DES_Long YRP/RijnDael_AES YRP/BASE64_table YRP/QuarianCode YRP/Quarian YRP/GenerateTLSClientHelloPacket_Test
a4fb42f8ed934b5400dd309716a833199a3591b5167dc86f78094f2e7506c36c	Composite	2022-03-20 13:27:45	User Submission	YRP/domain YRP/url YRP/contentis_base64 YRP/maldoc_OLE_file_magic_number [+] YRP/Big_Numbers1
a1d2c856822cf2e66b6fd68d4e07f090839c4989099531585af171665ae25067	PE32	2022-03-20 13:20:33	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
9eb46ce54466b221c7f56d3af4c22be517472189d7e907ead1b4c3fa4cfeb831	PE32	2022-03-20 13:13:22	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/HasOverlay YRP/HasDigitalSignature YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/WMI_strings YRP/keylogger YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/Njrat
9daff52b5fd16bd2ff808e6b4ba02d6b46e00d27520ffaabdf42e20d1378a15c	PE32	2022-03-20 13:10:36	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1
9dab0a321c760d7a1035404d1c401019e3680bbafb7fe7e25d90929be12e2d18	PE32	2022-03-20 13:10:34	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
24248fc71c48956bfff96745be7a27ccdc4bcaf314026fa121333f211c26d128	PE32	2022-03-20 13:00:12	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/WMI_strings YRP/Big_Numbers1
8348b0756633b675ff22ed3b840497f2393e8d9587f8933ac2469d689c16368a	PE32	2022-03-20 12:55:55	User Submission	YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ YRP/Borland_Delphi_v40_v50 [+] YRP/Armadillo_v4x YRP/Borland_Delphi_v30 YRP/Borland_Delphi_DLL YRP/IsPE32 YRP/IsWindowsGUI YRP/HasDebugData YRP/HasRichSignature YRP/powershell YRP/maldoc_find_kernel32_base_method_1 YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Browsers YRP/Dropper_Strings YRP/WMI_strings YRP/Misc_Suspicious_Strings YRP/inject_thread YRP/network_dropper YRP/network_dns YRP/escalate_priv YRP/keylogger YRP/win_mutex YRP/win_registry YRP/win_token YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/Str_Win32_Winsock2_Library YRP/Codoso_Gh0st_2 YRP/Codoso_Gh0st_1 YRP/fin7_functions FlorianRoth/Codoso_Gh0st_2 FlorianRoth/Codoso_Gh0st_1
968a8beb6e28a3373c34727e3267517381b9108f1086cd5c7325a376cb19339b	PE32	2022-03-20 12:53:57	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
91154f00f6a9b655f48a2e5988b92a66d07aaffc252150298a19e566cba9e694	Microsoft	2022-03-20 12:41:36	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
8f700076c9355cc2a07b8dcc4136d1364e987eebc063fb2e2b94e9b06989dea5	PE32	2022-03-20 12:38:06	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
8d98cc9cafea7bf31e27287f1002cbade82ac19f44d2b12584598509b8b10c99	PE32	2022-03-20 12:34:55	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
8d1bca33c800f77b9ce017415aaadf9d619543067f9336503e21460edbc18b17	PE32	2022-03-20 12:34:03	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant
8a0dfa424d15f228b79cf8e773937af51dbf53251168b44afa554fd62db25f85	PE32	2022-03-20 12:28:48	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Dropper_Strings YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
8a07c265a20279d4b60da2cc26f2bb041730c90c6d3eca64a8dd9f4a032d85d3	PE32	2022-03-20 12:28:41	User Submission	YRP/IsPE32 YRP/IsDLL YRP/IsWindowsGUI YRP/IsPacked [+] YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/Big_Numbers1
88e14dd202381ce53133c1284f092d83bb4fc91871caac0eb0621ca99c1985ca	Microsoft	2022-03-20 12:26:33	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
859ee5d6161bb723f736f9ce868a3ab5a4cd5b4c07296239d0fcc49d7cdd8249	Microsoft	2022-03-20 12:20:36	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
eb83e3230bdaac4dceb7687b98ee43442ce1ea7825576e4b1dac86ca869fd3c4	HTML	2022-03-20 12:15:49	http://jowy-hax.net/dc.txt	YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+] YRP/Big_Numbers1
45d445181f22f701fb1ecde5537c0a6c2b60490674f747f89bd02d77908c4fe8	HTML	2022-03-20 12:15:29	https://onedrive.live.com/download?cid=FB7929...	YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+] YRP/Big_Numbers0 YRP/Big_Numbers1
81cb6a984a5eb6db5a92f94309a371916b64b2eec9cc6833ae48650886ed5239	Microsoft	2022-03-20 12:13:46	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
8178b2a273ccd3ec4e01c78beeabb8b306e6851906b9581eff43d3af65cb72cb	ASCII	2022-03-20 12:13:00	User Submission	YRP/powershell YRP/domain YRP/IP YRP/url [+] YRP/contentis_base64 YRP/Antivirus YRP/Big_Numbers1 FlorianRoth/Suspicious_PowerShell_WebDownload_1
7f2fa5e8de6a3d91a78c091f921a258aefe7c0737198c8d13c7663c453d4dbf1	Microsoft	2022-03-20 12:07:43	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
844a97d8a57a581923fc520bbe83c27519f81dbe1a3a32ed6a90e7519852509a	HTML	2022-03-20 12:03:17	https://tria.ge/220319-cltt6sadfq	CuckooSandbox/embedded_win_api YRP/domain YRP/IP YRP/url [+] YRP/contentis_base64 YRP/Misc_Suspicious_Strings YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/Big_Numbers4
8f4cca33bb1903eeb20563551689fda7174b8cf03024d73e0236a531de74c15e	HTML	2022-03-20 12:03:10	http://petscams.com/news/namecheap-hurting-in...	YRP/possible_includes_base64_packed_functions YRP/domain YRP/IP YRP/url [+] YRP/contentis_base64 YRP/Big_Numbers0 YRP/Big_Numbers1
7c4cc1790fbea6474d3bca240acf5221df1aac14c332cff9bf1a56c33747d7f2	PE32	2022-03-20 12:02:24	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1
8129b37a2507b62e1e136c9063517b7be232a3e47feb3f9df05d5015ba2007ba	HTML	2022-03-20 12:00:51	http://tria.ge/220319-saf2yaccc9/behavioral1#...	YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+] YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/Big_Numbers4
93f0d08b71ee7e46d00f76300de83a057b22103be7b981eb80e6631eea85b709	PE32	2022-03-20 12:00:19	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/contentis_base64 YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/disable_dep YRP/keylogger YRP/Big_Numbers1 YRP/Njrat YRP/njrat1 FlorianRoth/DragonFly_APT_Sep17_3 BAMFDetect/njrat
ded08c2f175c8c5e189e3d431447ec15d0bd5a6cf3b674cd0fd917e77f912972	PE32+	2022-03-20 12:00:14	User Submission	YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsWindowsGUI YRP/MinGW_1 [+] YRP/domain YRP/IP YRP/contentis_base64 YRP/network_tcp_socket YRP/network_dns YRP/screenshot YRP/keylogger YRP/win_mutex YRP/win_registry YRP/win_files_operation YRP/Big_Numbers1 YRP/Advapi_Hash_API YRP/MD5_Constants YRP/BASE64_table YRP/Str_Win32_Winsock2_Library
8618dd97cc92d62cd540ee486e5b65a3590e8c4875d332b0c6497059cc72609c	HTML	2022-03-20 12:00:10	https://tria.ge/220319-aarvbsghgp	CuckooSandbox/embedded_win_api YRP/domain YRP/IP YRP/url [+] YRP/contentis_base64 YRP/Misc_Suspicious_Strings YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/Big_Numbers4
7aa391fd5872835bc1d3f685a63636069051e45dc215db56aa873606983bb045	Microsoft	2022-03-20 11:58:26	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
7a9985a79a8d09029791875e5cdadd03e187d6de041ef726686450dffd42d394	PE32	2022-03-20 11:58:24	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
7a844a73345acfd4a047d76088829ba790ae67a7d3a3527feecb290c6dbfc3bd	PE32	2022-03-20 11:58:10	User Submission	CuckooSandbox/vmdetect YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE [+] YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/VMWare_Detection YRP/Dropper_Strings YRP/DebuggerCheck__RemoteAPI YRP/vmdetect YRP/anti_dbg YRP/screenshot YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/MD5_Constants
7a6163739c86b3973c4d492af93a657108af085d06503284e59cd8758f400db5	Microsoft	2022-03-20 11:58:00	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
7a41a1a3587338cb69ba10c46950176faf9dabd938ddb9ad7dfeb65d2b79c96e	PE32	2022-03-20 11:57:45	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
755aeb3fe63418f2550fc79b3b0007deb7dd4737c641c773c1f3625f3adf81eb	PE32	2022-03-20 11:46:37	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
7541e2facb347f38265a7894552e6731d653b5a19fe5482038c43a97a9f4e6b9	Microsoft	2022-03-20 11:46:23	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
7322c0954a7addf1f90f728e52464bacec8c6bf4ff810fce58de58c20bfdf5af	Microsoft	2022-03-20 11:41:40	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1
70e4e361ebf8d3e573223e93605af3a0322b93e420b30812ee7c707317fe58ab	PE32	2022-03-20 11:36:11	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
70072a6239488b071403cf29308652486727816236c455de356bbe13df67d3a8	PE32	2022-03-20 11:34:03	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/VMWare_Detection YRP/Sandboxie_Detection YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/network_smtp_dotNet YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/CRC32_poly_Constant YRP/CAP_HookExKeylogger
70048d51529f09683d5180eb0e410297fa0332f155e213ebefc8fb750389177f	PE32	2022-03-20 11:34:00	User Submission	CuckooSandbox/vmdetect YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/VMWare_Detection YRP/DebuggerCheck__RemoteAPI YRP/vmdetect YRP/anti_dbg YRP/network_smtp_dotNet YRP/screenshot YRP/keylogger YRP/win_hook YRP/Big_Numbers1 YRP/Big_Numbers3 YRP/MD5_Constants
6f6a327875691d7d61cdb1e73bbe10e1252493f9e8b2a9c5b0ea31fcc6c38925	PE32	2022-03-20 11:32:48	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+] YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
6c66a530ffba5d13f757de65d3fe08968aad8df9b1f03f6876f631d0dd28f10e	PE32	2022-03-20 11:26:24	User Submission	YRP/Borland_Cpp_DLL YRP/Borland_Cpp_for_Win32_1999 YRP/Borland YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/HasModified_DOS_Message YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/WMI_strings YRP/Misc_Suspicious_Strings YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/Big_Numbers3 YRP/Big_Numbers4 YRP/MD5_Constants YRP/SHA512_Constants YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG YRP/Delphi_CompareCall
6ad915cd05351b2607c0f0f629daf69ce4343a6ae6e0cb28b8440eb25cc970d5	Microsoft	2022-03-20 11:22:56	User Submission	YRP/docx_macro YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+] YRP/url YRP/contentis_base64 YRP/Big_Numbers1

Recent Searches
yrp/big_numbers1
yrp/opclandestinewolf
yrp/blackshades
yrp/with_sqlite
yrp/borland_delphi_v60
yrp/unnamed_scrambler_21beta_211_p0ke
yrp/parallels_detection
yrp/trainercreationkitv5trainer
yrp/contentis_base64
yrp/office_document_vba

Search

Recent Searches