popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

1 Total New Invoices - Wednesday May 17 2023_9053.js

  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6402 May 19, 2023, 5:08 p.m. May 19, 2023, 5:10 p.m.
Size 21.3KB
Type ASCII text, with very long lines, with CRLF line terminators
MD5 0167008e21c985a2e4a2b547b824e5d8
SHA256 d549136b600c3669a25f52b5c6ba9cb29293accfc52a2202c6474ddc5ac4aca5
CRC32 0B2B6F94
ssdeep 384:x03wqvR/MfljeBiMBC7b+jH0U3puaL02kECO:xOwqvR/yjQii+KH0U3plL4ECO
Yara None matched

Name Response Post-Analysis Lookup
vipbeed.com
A 91.213.50.52
91.213.50.52
IP Address Status Action
164.124.101.2 Active Moloch
91.213.50.52 Active Moloch

Suricata Alerts

Flow SID Signature Category
TCP 192.168.56.102:49161 -> 91.213.50.52:443 906200054 SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) undefined

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

WSASend

 buffer: njdg.wQ+g‡– ÉÎûÀÔ|ÛÉQ³KBfïÉͲ/5 ÀÀÀ À 28)ÿ vipbeed.com  
socket: 580
0 0
Time & API Arguments Status Return Repeated

WSASend

 buffer: njdg.wQ+g‡– ÉÎûÀÔ|ÛÉQ³KBfïÉͲ/5 ÀÀÀ À 28)ÿ vipbeed.com  
socket: 580
0 0