ikolor wrote: ↑Thu Apr 25, 2019 4:27 pm ThanksTrickBot trojan.
https://www.virustotal.com/en/file/e2a7 ... 556209518/
Some more samples, but I don't found this:
ikolor wrote: ↑Mon Apr 15, 2019 12:47 pm What is this !!PDF, Word phishing.
https://www.virustotal.com/en/file/dbc0 ... 555332252/
next https://www.virustotal.com/en/file/cd15d42de2ece59aa7b78ede50c2d3b5297f7637c928ebc92d9da2f56f055d01/analysis/1553198197/ Emotet downloader. Downloads exe from: hxxp://siamnatural.com/tmp/EmC/ Connects to CnC servers: hxxp://188.8.131.52:443/bml/tlb/ringin/ hxxp://184.108.40.206:443/ringin/arizon...
I downloaded this sample from a site I was redirected to while googling. The file has unusual structure. Can somebody try analyzing this? Thanks. Virustotal: https://www.virustotal.com/#/file/e9b4b6b366e180811e7fc85c50478cc049617cc2ea8a2592cfecd90f5c535d4d It's Prepscram software bundler. It also c...
ikolor wrote: ↑Fri Mar 01, 2019 5:27 pm next ..It's CVE-2017-11882 exploit, downloads exe from this page:
https://www.virustotal.com/en/file/9ec0 ... 551461174/