SHA256 Hash File type Added Source Yara Hits
PE32 2017-10-16 10:03:46User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2017-12-21 18:43:19http://94.130.104.170/ed01ebfbc9eb5bbea545af4... YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
ASCII 2018-06-08 17:10:16User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
PE32 2018-06-21 17:40:59User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2018-10-23 18:05:17http://99.248.235.4/Library//Ransomeware/Wann... YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
MS-DOS 2018-11-13 15:12:26User Submission CuckooSandbox/vmdetect YRP/possible_includes_base64_packed_functions YRP/powershell YRP/maldoc_find_kernel32_base_method_1 [+]
PE32 2018-11-14 21:02:21User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2018-11-14 21:02:31User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2018-11-14 21:38:15http://52.53.215.54/Wannacry/Sample/5.doc YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2019-07-28 16:14:39User Submission CuckooSandbox/embedded_macho YRP/generic_javascript_obfuscation YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 [+]
data 2019-09-03 22:19:04User Submission YRP/powershell YRP/domain YRP/IP YRP/url [+]
ASCII 2019-10-25 22:24:05User Submission YRP/domain YRP/IP YRP/url YRP/contentis_base64 [+]
XML 2020-03-06 20:24:10User Submission CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect YRP/possible_includes_base64_packed_functions YRP/with_images [+]
PE32 2020-06-27 18:01:32User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2020-06-29 16:42:02User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2020-07-07 17:54:27User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
PE32 2020-07-07 19:30:00User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
Zip 2020-07-08 21:28:33User Submission YRP/domain YRP/contentis_base64 YRP/Big_Numbers3 YRP/WannaDecryptor [+]
PE32 2021-01-17 20:56:59User Submission YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 [+]
Zip 2021-06-11 17:04:40User Submission YRP/domain YRP/contentis_base64 YRP/WannaDecryptor YRP/suspicious_packer_section