Please take a look at this certificate as it appears to have been revoked.
VirusTotal - Plik - ec33d8ee9c3881b8fcea18f9f862d5926d994553aec1b65081d925afd3e8b028
hxxps[://]www[.]avastdefender[.]com/AnyDesk[.]exe
hxxps[://]www[.]avastdefender[.]com/anydesk[.]dmg
Hello tachion ,
Thank you for your submission, weâll check this.
Best regards,
FlorinG
SHA1: 997a45a3707dd6ac76765664503576d3f6a37cb3
Uploaded to Xcitium Instant Malware Analysis(XIMA) /Xcitium Automated Malware Analysis System(XAMAS)
Static Analysis:
Dynamic Analysis:
Please blacklist it Thanks
Nik123
May 7, 2024, 12:09pm
64
Blacklisted
Thanks Staff
Best Regards Nik
Nik123
May 12, 2024, 7:57pm
66
SHA1: 61817e25b0cfae37a3f289fc308e67146f874342
RANSOM!!!
Dynamic Analysis:
this ransom uses vssadmin to delete shadow copies please blacklist it immidiatly
1 Like
Hello @Nik123 ,
Thank you for sharing this, weâll check it.
Best regards,
FlorinG
1 Like
DrAlrek
August 12, 2024, 10:48pm
68
Whitelisted malware .txt (184 Bytes)
Connectwise ScamWare RAT.
Technically legit software, VERY commonly used maliciously by scammers of all sorts
Hello @DrAlrek ,
Thank you for your submission, weâll check this.
Best regards,
FlorinG
seriously, thereâs no easy way to uninstall it and scammers use it maliciously all the time.
It might as well be a RAT and because itâs abused by so many scammers, many antivirus companies have already blacklisted it
1 Like
DrAlrek
September 3, 2024, 1:44am
71
Abused Ledgit Software.txt (407 Bytes)
Thanks for what you did about connectwise, I have a few more for you now.
FlorinG
September 3, 2024, 6:25am
72
Hello,
Thank you for sharing these, weâll check them.
Best regards,
FlorinG
Loyisa
September 3, 2024, 12:05pm
73
SHA1: e434a9674cd6c663fa952dbfc2293b2f9a7fc3ab
a RAT from âSilverfoxâ APT
Loyisa
September 3, 2024, 12:07pm
74
SHA1: â â â 3f3323e651c80a3a8c2fa70685544e9ac8d40
another RAT from âSilverfoxâ APT
Loyisa
September 3, 2024, 12:16pm
75
SHA1: 6c379a4eddf56addc591be46d6cf27a9c7f8c093
another another RAT from âSilverfoxâ APT
FlorinG
September 3, 2024, 12:30pm
76
Hello,
Thank you for your submissions, weâll check the files.
Best regards,
FlorinG
Loyisa
September 3, 2024, 3:18pm
77
SHA1: df4888f00a7c86a838385729737d2849f5207504
SHA1: 3bd7d9470b8af86205a9f751d7d24c2ae13bad82
SHA1: 56c6d406881639e13cfeccdedaf68cf746882395
All of them are CobaltStrike
Hello,
Thank you for your submissions, weâll check the files.
Best regards,
IonutP
1 Like
Nik123
September 10, 2024, 8:27pm
79
Hi Staff Please Blacklist this file
1 Like
Hello,
Thank you for your submissions, weâll check the file.
Best regards,
IonutP
1 Like
Hello, could you check if this file is really dangerous for the computer?
Website Link: Release v1.1.0 ¡ chidiwilliams/buzz ¡ GitHub
Application Name: Buzz-1.1.0-windows.exe
MD5
4e25c12dd86d5983ffcbe7032b4ef966
SHA-1
f88f6a7b4d3187785b65c6568601b39bcd46c419
SHA-256
ef7d34f0a63ae61437849a75cef166c223c0ec30b29000d08bf48f6b285520b0