No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-05-12 09:59 |
bb.exe 315e0ad57c0807ecacf08d749db0dc29PWS .NET framework .NET EXE PE File PE32 Check memory Checks debugger unpack itself |
0.8 | M | ZeroCERT | |||||||||||||||||||
|
||||||||||||||||||||||||
2 | 2021-03-30 16:57 |
winlog.exe d178c14362d0e9f7f76cd0dd6c90ef2cAzorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself |
2.4 | M | 50 | 조광섭 | ||||||||||||||||||
|
||||||||||||||||||||||||
3 | 2021-03-27 11:33 |
winlog.exe d178c14362d0e9f7f76cd0dd6c90ef2cAzorult .NET framework VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key crashed |
11.8 | M | 34 | ZeroCERT | ||||||||||||||||||
|