MD5 Hash File type Added Source Yara Hits
c4de6f3bba661a7fc3922ff938619725 ASCII 2018-03-07 04:07:54http://172.104.107.30/PowerSploit/CodeExecuti... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
0d416f8cd599c029f28344f288c73caf C 2018-03-07 04:07:57http://172.104.107.30/PowerSploit/CodeExecuti... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
af17a2c4c38621b78d2714dc18dae5e2 ASCII 2018-03-07 04:07:59http://172.104.107.30/PowerSploit/CodeExecuti... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/IP [+]
9fb0dd54c5b2abae77f1943ff5dd6076 ASCII 2018-03-07 04:08:02http://172.104.107.30/PowerSploit/CodeExecuti... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/contentis_base64 [+]
d82be5ccb9416958abeb59506d112af7 ASCII 2018-03-07 04:09:43http://172.104.107.30/PowerSploit/Exfiltratio... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
36622ac07149595796f8ec7e5cb3b9bc ASCII 2018-03-07 04:09:45http://172.104.107.30/PowerSploit/Exfiltratio... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
ee886cd71de14b7f51c6a89f781b783c ASCII 2018-03-07 04:12:27http://172.104.107.30/PowerSploit/Exfiltratio... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
45a418848bfd7cd5d330dc63dd71a59e ASCII 2018-03-07 04:12:47http://172.104.107.30/PowerSploit/Privesc/Get... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
51f1a9743572fd5f2a40198e623b5222 C 2018-03-07 04:53:30http://207.148.71.41/CodeExecution-dll.jpg CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
2e048e53dc6b3c27f5f7e72606102cfd ASCII 2018-11-14 18:43:51User Submission CuckooSandbox/embedded_win_api YRP/domain YRP/contentis_base64 YRP/Empire_PowerShell_Framework_Gen4 [+]
f2f36d8cc4b5f5a15f87d41b613b37ac ASCII 2019-05-05 01:51:42http://196.52.9.47/Invoke--Shellcode.ps1 CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/IP [+]
a875e14f20afb3a8e37e1447d920466e C 2019-05-05 03:36:22http://45.76.216.23/PowerShell/Invoke-Reflect... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
8e8c6170d49926e5fe1e2c71e7cbfab1 ASCII 2019-05-05 03:36:27http://45.76.216.23/PowerShell/Invoke-TokenMa... CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/url [+]
415f903673236e2b08241a240fe68019 ASCII 2019-07-17 14:11:31User Submission CuckooSandbox/embedded_win_api YRP/powershell YRP/domain YRP/contentis_base64 [+]