Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2024-06-21 07:53	avg_secure_browser_setup.exe 13b3860a2827e505cb6de1418f640b16 HermeticWiper NSIS Generic Malware PhysicalDrive Malicious Library UPX Malicious Packer PE File PE32 DLL DllRegisterServer dll OS Processor Check MSOffice File CAB PE64 Browser Info Stealer VirusTotal Malware AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities Collect installed applications Auto service Check virtual network interfaces AppData folder sandbox evasion anti-virtualization installed browsers check Tofsee Ransomware Fortinet Windows Browser ComputerName Firmware crashed	4 Keyword trend analysis Info http://browser-update.avg.com/browser-avg/win/x64/109.0.24252.121/AVGBrowserInstaller.exe https://stats.securebrowser.com/?_=1718955853989&retry_tracking_count=0&last_request_error_code=0&last_request_error_message=&last_request_status=0&last_request_system_error=0&request_proxy=0 https://update.avgbrowser.com/service/update2 https://update.avgbrowser.com/service/update2?cup2key=9:2906594695&cup2hreq=1a77176c46ecf7b2954c2373054d5a3b455eb7a159f1b6ad23c4e5706d55a272	6	2		19.8		4	ZeroCERT

2	2024-06-04 09:33	avg_secure_browser_setup.exe 60feb08011db31607cee2a5bc1f2206f HermeticWiper NSIS Generic Malware PhysicalDrive Malicious Library UPX Malicious Packer PE File PE32 DLL DllRegisterServer dll OS Processor Check PE64 MSOffice File CAB Browser Info Stealer VirusTotal Malware AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files RWX flags setting unpack itself Windows utilities Collect installed applications Auto service Check virtual network interfaces AppData folder AntiVM_Disk sandbox evasion anti-virtualization VM Disk Size Check installed browsers check Tofsee Ransomware Fortinet Windows Browser ComputerName Firmware DNS	5 Keyword trend analysis Info http://update.avgbrowser.com/service/update2 http://apps.identrust.com/roots/dstrootcax3.p7c http://update.avgbrowser.com/service/update2?cup2key=9:283269675&cup2hreq=aa761c4c78c12df5c3450c172e959808e6ee2cca746d691e17a93b16d42cf812 http://browser-update.avg.com/browser-avg/win/x64/109.0.24111.121/AVGBrowserInstaller.exe https://stats.securebrowser.com/?_=1717476269278&retry_tracking_count=0&last_request_error_code=0&last_request_error_message=&last_request_status=0&last_request_system_error=0&request_proxy=0	8	2		21.0		3	ZeroCERT

3	2022-08-11 18:34	scrss.exe da4c79f61e41baeeefb1c8653e8e271f RAT UPX AntiDebug AntiVM PE32 PE File .NET EXE FormBook Malware download Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself	3 Keyword trend analysis Info http://www.qdrongzhan.com/s82e/?RP=I0ly9SE4c67vLFPoapAq3D2YG/Tx1Bsa8tXNg8fDm66q2Ntoe5pPoEP370NrdZlaiWhqqpSn&rVBt5V=S0DPXvJ http://www.sdhzhyhgjt.com/s82e/?RP=LWKvc3rO3Su29Mx0JEtLR8sZKBmPk7od32LZXgaG4BI8R5J/s5zqxupWl9WoUO3w/TcjJC6Q&rVBt5V=S0DPXvJ http://www.differenteperforza.com/s82e/?RP=5d8Bq6cfz6S/Kr/S/G4pyViZ0m+cMdmLhUUu7LmSlMRhR5AUgMnKqYLZ0JMyWNgjacmIlHHF&rVBt5V=S0DPXvJ	6	1		7.2	M		ZeroCERT

First
1
Last
Total : 3cnts