MD5 Hash File type Added Source Yara Hits
27f54e0271e4f58b7d3c8ddc5c6d617f data 2018-07-23 20:38:42User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect FlorianRoth/Empire_Get_SecurityPackages [+]
b7cbb79edd04c32dc46e23407d0c4139 FoxPro 2019-06-29 15:13:41User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_win_api YRP/maldoc_find_kernel32_base_method_1 YRP/domain [+]
55b8dbe7bb0c37c05a30cc75742401a5 FoxPro 2019-06-29 15:14:13User Submission CuckooSandbox/shellcode CuckooSandbox/embedded_win_api YRP/maldoc_find_kernel32_base_method_1 YRP/domain [+]
a97c765730c3cca5adbc1fa25fa7372c PE32 2019-08-29 17:19:15http://gxx.monerov10.com:8800/gx.exe FlorianRoth/Regin_Related_Malware
939d8b635b9258d6a63a289df850da4d PE32 2019-08-30 17:30:57http://gxx.monerov10.com:8800/gx.exe FlorianRoth/Regin_Related_Malware
c86050690e0575e952a75840d815c0bf data 2019-10-25 20:21:42User Submission CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect YRP/webshell_iMHaPFtp_2 [+]
1ef1fab894f99ddf0f402c105e3fba6f ASCII 2019-10-25 20:24:03User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
09717b4cde05b4bc3ee52a50f90f5dac ASCII 2019-10-25 20:24:03User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]
ab8c13c105cfe310f2bc1a66884e1f11 ASCII 2019-10-26 12:42:56User Submission YRP/domain YRP/url YRP/contentis_base64 YRP/Misc_Suspicious_Strings [+]