SHA256 Hash File type Added Source Yara Hits
PE32 2022-03-08 02:28:36User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2022-03-06 02:04:25User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2022-02-23 02:56:07User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2022-02-17 23:36:37User Submission YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h YRP/Borland YRP/MaskPEV20yzkzero YRP/IsPE32 [+]
Composite 2022-01-31 05:01:56User Submission YRP/possible_includes_base64_packed_functions YRP/office_document_vba YRP/Contains_VBA_macro_code YRP/domain [+]
PE32+ 2021-08-31 07:51:29User Submission YRP/IsPE64 YRP/IsDLL YRP/IsWindowsGUI YRP/HasOverlay [+]
PE32 2021-06-21 20:03:18User Submission YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ YRP/Borland_Delphi_v40_v50 [+]
PE32 2021-06-21 20:03:12User Submission YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ YRP/Borland_Delphi_v40_v50 [+]
PE32 2021-06-21 17:01:13User Submission YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ YRP/Borland_Delphi_v40_v50 [+]
PE32 2021-06-21 16:00:59User Submission YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ YRP/Borland_Delphi_v40_v50 [+]
PE32 2021-05-19 01:02:11User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2021-04-25 01:04:20User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2021-04-23 01:02:56User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2020-11-22 02:46:25User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-11-04 02:10:44User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-10-07 01:07:42User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-08-27 01:25:02User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32+ 2020-07-07 10:58:32User Submission YRP/possible_includes_base64_packed_functions YRP/IsPE64 YRP/IsConsole YRP/domain [+]
PE32 2020-06-29 22:45:11User Submission YRP/possible_includes_base64_packed_functions YRP/MingWin32_GCC_3x YRP/Microsoft_Visual_Cpp_v71_DLL_Debug_additional YRP/MingWin32_v_h_additional [+]
PE32 2020-06-29 17:47:11User Submission YRP/possible_includes_base64_packed_functions YRP/MingWin32_GCC_3x YRP/Microsoft_Visual_Cpp_v71_DLL_Debug_additional YRP/MingWin32_v_h_additional [+]
PE32 2020-06-29 00:15:39User Submission YRP/ASPack_v2001_Alexey_Solodovnikov YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h YRP/ASPack_v10804_additional YRP/ASPack_v10804_Hint_WIN_EP [+]
PE32 2020-06-28 13:56:54User Submission YRP/Borland_Delphi_40_additional YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ [+]
PE32 2020-06-07 01:27:17User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-05-29 01:18:50User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-05-29 01:02:01User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-05-27 01:15:47User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-05-05 01:19:18User Submission YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL YRP/IsDLL [+]
PE32 2020-04-04 01:36:48User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
data 2020-03-18 00:55:14User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect YRP/possible_includes_base64_packed_functions [+]
PE32 2020-02-12 02:24:29User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32+ 2020-02-08 16:00:05User Submission YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsConsole YRP/HasOverlay [+]
PE32 2020-01-25 02:25:28User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2020-01-20 02:01:58User Submission YRP/Microsoft_Visual_C_Basic_NET YRP/NETDLLMicrosoft YRP/IsPE32 YRP/IsNET_DLL [+]
PE32 2019-12-26 02:20:23User Submission YRP/IsPE32 YRP/IsDLL YRP/IsConsole YRP/IsPacked [+]
PE32 2019-12-26 02:05:59User Submission YRP/IsPE32 YRP/IsDLL YRP/IsConsole YRP/IsPacked [+]
PE32 2019-11-24 10:42:38User Submission YRP/Borland_Delphi_40_additional YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional YRP/Borland_Delphi_30_ [+]
ASCII 2019-10-25 20:22:16User Submission CuckooSandbox/embedded_win_api YRP/domain YRP/url YRP/contentis_base64 [+]
ASCII 2019-10-25 20:21:32User Submission CuckooSandbox/embedded_win_api YRP/domain YRP/IP YRP/url [+]
PE32+ 2019-10-25 12:49:38User Submission YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsDLL YRP/IsWindowsGUI [+]
ELF 2019-10-21 00:00:06http://192.99.55.18/Ouija_x.86 YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ELF 2019-09-22 06:43:42http://23.254.165.208/Ouija_I.586 YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/url [+]
ELF 2019-09-22 06:43:40http://23.254.165.208/Ouija_M.psl YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ELF 2019-09-22 06:43:38http://23.254.165.208/Ouija_x.86 YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ELF 2019-09-22 06:43:36http://23.254.165.208/Ouija_P.pc YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ELF 2019-09-10 12:00:13http://23.254.165.208/Ouija_I.586 YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/url [+]
ELF 2019-09-10 12:00:11http://23.254.165.208/Ouija_M.psl YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ELF 2019-09-10 12:00:09http://23.254.165.208/Ouija_x.86 YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
ELF 2019-09-10 12:00:07http://23.254.165.208/Ouija_P.pc YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
PE32 2019-04-24 23:24:02http://microagrisolution.com/wp-admin/X9_f/ YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 YRP/IsWindowsGUI [+]
C 2018-12-28 17:32:41User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
PE32 2018-10-25 01:45:35https://bitbucket.org/trainee_lemon/lemon/dow... YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+]
PE32+ 2018-05-24 00:58:05User Submission CuckooSandbox/vmdetect YRP/webshell_iMHaPFtp_2 YRP/webshell_caidao_shell_guo YRP/webshell_cihshell_fix [+]
Zip 2018-03-07 02:07:38http://94.130.104.170/Surtr//Surtr.zip YRP/domain YRP/contentis_base64 YRP/Big_Numbers3 YRP/SurtrStrings [+]
ELF 2017-10-16 01:37:29User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
ELF 2017-10-16 01:33:40User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
ELF 2017-10-16 01:20:43User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]