No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-06-03 21:18 |
TT-4.exe 19295d360b9ca2678d757d87d9445a65AsyncRAT backdoor PWS .NET framework Antivirus PE File .NET EXE PE32 VirusTotal Malware powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process AppData folder Windows ComputerName DNS Cryptographic key |
6.4 | M | 37 | ZeroCERT | ||||||||||||||||||
|