open-menu
closeme
Search for Antivirus process
calendar
Sep 20, 2024
·
Share on:
twitter
facebook
linkedin
copy
Capture Wi-Fi password
calendar
Aug 14, 2024
·
Share on:
twitter
facebook
linkedin
copy
Disable power options
calendar
Mar 11, 2024
·
Share on:
twitter
facebook
linkedin
copy
Stop EventLog
calendar
Mar 11, 2024
·
Share on:
twitter
facebook
linkedin
copy
Uninstall MRT(Malicious Software Removal Tool)
calendar
Mar 11, 2024
·
Share on:
twitter
facebook
linkedin
copy
Dot net compiler compiles file from suspicious location
calendar
Feb 5, 2024
·
Share on:
twitter
facebook
linkedin
copy
Access payload via nslookup txt record
calendar
Dec 14, 2023
·
Share on:
twitter
facebook
linkedin
copy
DarkGate
calendar
Oct 26, 2023
·
Share on:
twitter
facebook
linkedin
copy
Powershell download and load assembly
calendar
Aug 23, 2023
·
Share on:
twitter
facebook
linkedin
copy
Xmrig
calendar
Aug 8, 2023
·
Share on:
twitter
facebook
linkedin
copy
Powershell download and execute file
calendar
Jul 21, 2023
·
Share on:
twitter
facebook
linkedin
copy
Register Jar In Run Key
calendar
Jun 21, 2023
·
Share on:
twitter
facebook
linkedin
copy
Set custom UserAgent and download file via Powershell
calendar
May 30, 2023
·
Share on:
twitter
facebook
linkedin
copy
Set autostart key via New-ItemProperty Cmdlet
calendar
Mar 21, 2023
·
Share on:
twitter
facebook
linkedin
copy
ONENOTE drops suspicious file
calendar
Jan 13, 2023
·
Share on:
twitter
facebook
linkedin
copy
Powershell Download and Execute IEX
calendar
Nov 21, 2022
·
Share on:
twitter
facebook
linkedin
copy
MedusaLocker
calendar
Nov 11, 2022
·
Share on:
twitter
facebook
linkedin
copy
Remcos
calendar
Nov 9, 2022
·
Share on:
twitter
facebook
linkedin
copy
Sodinokibi
calendar
Nov 2, 2022
·
Share on:
twitter
facebook
linkedin
copy
Copy file to startup via Powershell
calendar
Oct 28, 2022
·
Share on:
twitter
facebook
linkedin
copy
Stop multiple services
calendar
Oct 11, 2022
·
Share on:
twitter
facebook
linkedin
copy
Powershell drops NetSupport RAT client
calendar
Aug 30, 2022
·
Share on:
twitter
facebook
linkedin
copy
VjW0rm
calendar
Aug 30, 2022
·
Share on:
twitter
facebook
linkedin
copy
Drops script at startup location
calendar
Mar 15, 2022
·
Share on:
twitter
facebook
linkedin
copy
bitsadmin download and execute
calendar
Dec 10, 2021
·
Share on:
twitter
facebook
linkedin
copy
Execute DLL with spoofed extension
calendar
Oct 15, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell Decrypt And Execute Base64 Data
calendar
Sep 30, 2021
·
Share on:
twitter
facebook
linkedin
copy
Drops fake system file at system root drive
calendar
Aug 13, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell run code from registry
calendar
Aug 12, 2021
·
Share on:
twitter
facebook
linkedin
copy
Run CertUtil from suspicious location
calendar
Jul 30, 2021
·
Share on:
twitter
facebook
linkedin
copy
LimeRAT
calendar
Jul 22, 2021
·
Share on:
twitter
facebook
linkedin
copy
Scheduled temp file as task from temp location
calendar
Jun 28, 2021
·
Share on:
twitter
facebook
linkedin
copy
msiexec download and execute
calendar
May 25, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule system process
calendar
May 19, 2021
·
Share on:
twitter
facebook
linkedin
copy
Add file from suspicious location to autostart registry
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
AntiVM
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
AppLocker Bypass via Regsvr32
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Check external IP via Powershell
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Check privilege of CMD via whoami
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Copy itself to suspicious location via type command
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Credwiz util dropped by mshta for dll sideloading
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Decode DLL Via Certutil
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Decode strings from lnk via findstr.exe
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Delete Shadow Copy Via Powershell
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Delete shadow copy via WMIC
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Drops a DLL with WLL extension to the startup
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
EQNEDT32.EXE connecting to internet
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Exe Launched By ReflectiveLoader Dll
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Execute dll with txt extension from temp location
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Execute Script with spoofed extension
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Execute Scriptlet from internet Via Regsvr32
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Execute Scriptlet Via Regsvr32
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
File Dropped By EQNEDT32EXE
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Fodhelper UAC Bypass
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Geofenced Ru
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Get antivirus details via WMIC query
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Hide copy and delete itself
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
IcedID Downloader
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Kill multiple process
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
MSBuild connects to smtp port
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
MSBuild execute suspicous task
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
MSBuild Launched By Scr
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Mshta Download Pastebin
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
NanoCore
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
NetWire
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Office product drops executable at suspicious location
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Office product drops script at suspicious location
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell add exclusion path, extension and process
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell adding suspicious path to exclusion list
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell create lnk in startup
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell delayed execution via ping command
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell download file and shellexecute
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell download file from base64 url
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell download payload from hardcoded c2 list
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell execute code from registry
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell IEX Download In Base64
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell launch wmic via class
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell launch wscript
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell Launched By Winword
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell load assembly from internet
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Powershell load assembly from registry
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
powershell registry execution via wmic
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Quasar
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
ReflectiveLoader
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
RegAsm connects to smtp port
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Register dll at autostart location via regsvr32
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Register Wscript In Run Key
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Rename system process and copy to suspicious location
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Renamed MSHTA launching html
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
RMSRemoteAdmin
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Run temp file via regsvr32
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
rundll32 launch mshta and run script from internet
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
rundll32 run dll from internet
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Ryuk
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule binary from dotnet directory
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule CERTUTIL windows binary
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule REGSVR windows binary
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule script as task
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule script from internet via mshta
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Schedule VBS From Appdata
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Shedule powershell with encoded command parameter
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Steal Google chrome login data
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Wake-On-Lan
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Winword Drops Script In Startup
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Wmic download via msiexec
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Wmic Launch Msiexec
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
wmic launch powershell and execute encrypted script
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
Wmic Launch regsvr32
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
WMIC launch script from xsl file
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
WScript Launched By Powershell
calendar
May 3, 2021
·
Share on:
twitter
facebook
linkedin
copy
to-top