MD5 Hash File type Added Source Yara Hits
84e3ad0d62d21739d632d2106864e79e ELF 2017-10-16 01:20:43User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
b3d26632c4077e731ef2da329974519d ELF 2017-10-16 01:33:40User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
24734ef952fe363415cd4c2f7322276f ELF 2017-10-16 01:37:29User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
38aec0ac2b0d8fdeaa22bda66b94926d Zip 2018-03-07 02:07:38http://94.130.104.170/Surtr//Surtr.zip YRP/domain YRP/contentis_base64 YRP/Big_Numbers3 YRP/SurtrStrings [+]
f901c645188f9c80afa8f49174f065ce PE32+ 2018-05-24 00:58:05User Submission CuckooSandbox/vmdetect YRP/webshell_iMHaPFtp_2 YRP/webshell_caidao_shell_guo YRP/webshell_cihshell_fix [+]
0e6cd39d6ed6ba223fadf017a161bdf6 PE32 2018-10-25 01:45:35https://bitbucket.org/trainee_lemon/lemon/dow... YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET YRP/Microsoft_Visual_Studio_NET_additional [+]
c6a11b469ff6f262623c94ed477b5b57 C 2018-12-28 17:32:41User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
d92b779ad3e8dfd26705cc812596ea17 PE32 2019-04-24 23:24:02https://www.itecwh.com.ng/wp-admin/2_B/ YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 YRP/IsWindowsGUI [+]
ad5e64f0f64eebb86f021aac38faf699 ELF 2019-09-10 12:00:07http://23.254.165.208/Ouija_P.pc YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
65946e0281abe5ca7c0abf8443dd3632 ELF 2019-09-10 12:00:09http://23.254.165.208/Ouija_x.86 YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
270c00dd8efea95f81ce4037c15b74d6 ELF 2019-09-10 12:00:11http://23.254.165.208/Ouija_M.psl YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
57891b3aafeb9866690afc5280a2d826 ELF 2019-09-10 12:00:13http://23.254.165.208/Ouija_I.586 YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/url [+]
36d4fe77b753fd3bb0fcb4554412365a ELF 2019-09-22 06:43:36http://23.254.165.208/Ouija_P.pc YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
49b90935d37b96c21f5c6ed065e1804f ELF 2019-09-22 06:43:38http://23.254.165.208/Ouija_x.86 YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
455e7d9bf8be00eb9dd0a914737c64fc ELF 2019-09-22 06:43:40http://23.254.165.208/Ouija_M.psl YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
49a8920382c02bbc4998b6d01f5161a1 ELF 2019-09-22 06:43:42http://23.254.165.208/Ouija_I.586 YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/url [+]
84060342fb329662e612b1ebf90d2a1c ELF 2019-10-21 00:00:06http://192.99.55.18/Ouija_x.86 YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
8b4d398435a8cf2403f0c1b26f774a65 PE32+ 2019-10-25 12:49:38Zemana Submission YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsDLL YRP/IsWindowsGUI [+]
de3607d4b47898014eb1da724fff4e04 ASCII 2019-10-25 20:21:32User Submission CuckooSandbox/embedded_win_api YRP/domain YRP/IP YRP/url [+]
84514715e1689ccac734a6c1a9759d34 ASCII 2019-10-25 20:22:16User Submission CuckooSandbox/embedded_win_api YRP/domain YRP/url YRP/contentis_base64 [+]