Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-11-03 09:51	vbc.exe 594effa8099b0150fc62239293f7510f Generic Malware Admin Tool (Sysinternals etc ...) Malicious Library UPX PE File PE32 FormBook Emotet Malware download VirusTotal Malware Buffer PE AutoRuns Code Injection Malicious Traffic buffers extracted Creates executable files RWX flags setting unpack itself Tofsee Windows crashed	18 Keyword trend analysis Info http://www.bamubusinesssolutions.com/rqan/?ElS=Oqab7tfRx8sIdpyPKdhlr1P/y/SKoxG7Lat41WjkAk+n68MulemFsZXHkYgVDCOXLLVYpApK&lHND=JlztxHHpCVa http://www.wurzelwerk-sk.com/rqan/?lHND=JlztxHHpCVa&ElS=EVMQbNkrt4gPAHTjtdFCuFi1dmrQswnIIjoERm2qsQfbER0Nmlf0zDIRFk369Iqw9hLNnwY+ http://www.gailkannamassage.com/rqan/?ElS=2EiplEB9LfHEQ7p6E8O7uy8klB9VuSZUysw514NCf6E5XeyZO0JhwkFdsqClzr3FE7gC451G&lHND=JlztxHHpCVa http://www.appelnacrtl.quest/rqan/?lHND=JlztxHHpCVa&ElS=0vnGGhXrw8MYsAVUzhUBwHY688Yq+I9ufdve08R72y0aFUEJEgc94AtP7vs1Rwh6YJacgQFn http://www.anthonyaarnold.com/rqan/?ElS=nXb8TAZPYTKJnRrZC8GfrTSCrGoVlau1gQGn5GO75UMd983Q3NLO89qWBoHnTj4RfZv8bfb0&lHND=JlztxHHpCVa - rule_id: 7219 http://www.anthonyaarnold.com/rqan/?ElS=nXb8TAZPYTKJnRrZC8GfrTSCrGoVlau1gQGn5GO75UMd983Q3NLO89qWBoHnTj4RfZv8bfb0&lHND=JlztxHHpCVa http://www.elitespeedwaxs.com/rqan/?lHND=JlztxHHpCVa&ElS=ZoAJP+BDAkGz+3iNXMJ+CHJb8Mp/qyue60mjjuDFdNde2KHhCcKUmM+q+Vtm4Zuf+kurg8WJ http://www.uvowtae.xyz/rqan/?ElS=ZZy5hRqmZOoaftbI3lJaY+numQhU08pETZvcVOQuJgi34tSFY0KwcxAXEaVP7V1H/+8PWA+9&lHND=JlztxHHpCVa http://www.cardboutiqueapp.com/rqan/?lHND=JlztxHHpCVa&ElS=7XmFwjbCeixI2TDSYCNwr0HgHUHoiQEi/VPj3ka7wDWICz/dm8qqNJY2vVzGU6p/p2qyOoMU - rule_id: 6216 http://www.glitchpunks.art/rqan/?ElS=jnMNyp96MVi3d/b9ZvP/NOH36q1LYo6/R+96lzZsgdbViXARiO1YbMDjycmwvJHloLAdu5y1&lHND=JlztxHHpCVa http://www.miaocharge.com/rqan/?lHND=JlztxHHpCVa&ElS=9CaAjphYMWICGL2ZvM79nWw05WaC2zDB/e+VETAsQSTs54JRZtExQ7YeXjJbFvoxXXUR0vS9 http://www.sarasota-pressurewashing.com/rqan/?lHND=JlztxHHpCVa&ElS=ry+sRFRMXlDxvtE9JGL3tGe1ZWPQULkQ1R/eFzSz4BW7gwKZuQNRVyYVDElVrAqPZ7f9/kYw http://www.mg-garage.com/rqan/?lHND=JlztxHHpCVa&ElS=VadzcRezl7fYg9HoulrhgdTGgq/MkTgyqBkCX1MMw29+fY+OO3IYrPj5ro0Fk+lhxSYT+hTg http://www.hubmedia.digital/rqan/?ElS=jKXuqpJ845LlYgXLN57GGReLMLujtTvdbdtZr6KDyHbeGyC6N93DxSGPylyr0R/BLC7uEPiJ&lHND=JlztxHHpCVa - rule_id: 7218 http://www.hubmedia.digital/rqan/?ElS=jKXuqpJ845LlYgXLN57GGReLMLujtTvdbdtZr6KDyHbeGyC6N93DxSGPylyr0R/BLC7uEPiJ&lHND=JlztxHHpCVa https://tsdu4a.db.files.1drv.com/y4mmkOA8QqvSqK8B-uXc3-dxi6xImnjtUOSfkZ475nBqEPVMewJ1RMuDMtnzOLhGVIwQ-Uu7dqOeHUFHo93S-9oIuId31cPDq9Br_5fXcKitLNCZdExfg-0AH1zShrgZz4Z7ZhY85SRLHHunuwZN8ohu1TX_MuXpyD2Do16bJySf0HHbGLPEvIg0TYXTmkB6Kd_2XPqjz02n1YvGN8-OcrS2Q/Esjciodwwuwolakofuzmeiihfvjqmeb?download&psid=1 https://onedrive.live.com/download?cid=93B08D41736DF17C&resid=93B08D41736DF17C%21107&authkey=AHDrpWvJroXhRdM https://tsdu4a.db.files.1drv.com/y4mqHJCE4YvQxkMZGuWEGC5R3vOdf9prSE54f80vmMP73krbxeSG675FNEVuAPIIogtrxsHRT1P5Po4TFOCsUu7u022dt0W2Y4KBj_0_Ywnx4o3nZ_-AM779_47a8aOHxWLvLITPwQP1EZpRkWR7PXcMC3Nc4tLm-up66ekK5KBaMFtyTjBttxZj9cabV6K3vU7CCnYNLKbwiUDpIHkP5xsNw/Esjciodwwuwolakofuzmeiihfvjqmeb?download&psid=1	30 Info www.lakshhomesbalram.info() onedrive.live.com(13.107.42.13) - mailcious www.cardboutiqueapp.com(185.129.100.113) www.wurzelwerk-sk.com(81.169.145.80) www.anthonyaarnold.com(198.54.117.217) www.elitespeedwaxs.com(34.102.136.180) www.glitchpunks.art(52.220.193.16) www.uvowtae.xyz(104.21.67.228) www.gailkannamassage.com(142.250.207.51) www.hubmedia.digital(2.57.90.16) www.mg-garage.com(13.248.216.40) www.appelnacrtl.quest(37.123.118.150) www.miaocharge.com(101.32.113.133) www.bamubusinesssolutions.com(104.161.64.211) www.sarasota-pressurewashing.com(34.102.136.180) tsdu4a.db.files.1drv.com(13.107.42.12) 81.169.145.80 - mailcious 76.223.65.111 37.123.118.150 - mailcious 13.107.42.13 - mailcious 13.107.42.12 - malware 34.102.136.180 - mailcious 198.54.117.217 - phishing 104.161.64.211 - mailcious 142.250.204.51 52.220.244.242 2.57.90.16 - mailcious 185.129.100.113 - mailcious 172.67.182.120 101.32.113.133	3	3	8.8	M	35	ZeroCERT

2	2021-11-03 09:44	vbc.exe 91fb23dcf91534e17f881f58d5aa746c Generic Malware Admin Tool (Sysinternals etc ...) Malicious Library UPX PE File PE32 VirusTotal Malware AutoRuns Creates executable files RWX flags setting unpack itself Tofsee Windows crashed	3 Keyword trend analysis Info https://onedrive.live.com/download?cid=65A7AE11B0C1F12A&resid=65A7AE11B0C1F12A%21131&authkey=ANpUFMDPATtP4fk https://wy8ibg.bn.files.1drv.com/y4m1cNBZE9_FQOZ4xf3bA19aNEhp3Ab4BU2F4-Tenf3GyCVS2_kFUOwcVgQfw1r_3nJ56Wn8Ci8_BkJ-AvCULuY53Ut5_WJJePsTWx7FB4oMCe91LzkgvzmJLm7OKGh8De1E-tOx_l9q4gmlVgkbOkk2TiDECU6BZF10dZl0_7M98PwhX46z_tOwEbFMGo1ajXGMgqn3VufVwC6juHcT_g81w/Jffpgnbpalrawjcflhfbdsfomcibdmr?download&psid=1 https://wy8ibg.bn.files.1drv.com/y4mO0cDT-Q4gjkLDcr6Uj33ueteGAGczsvHOWgZv7zEPxywH4AJS-BsPzt18HXfTFqRo7iBJ48BmdSQLlXigD0EtHU2nvSqiUA7hX1rR4-WBcMvCXCS6mLZoAKU46veesHVltlDppC89XA_QBoaueJdbK3hhb7UM6rinbS6u3p5kMYPz-ytjRxaS4VzXtVTfjVUABR-LAgYdT4w5WYKeVyfiw/Jffpgnbpalrawjcflhfbdsfomcibdmr?download&psid=1	4	1		4.0		13	ZeroCERT

3	2021-11-03 09:42	cc.exe 857f6017b36866f5e47a835608b6377c [m] Generic Malware Generic Malware task schedule Admin Tool (Sysinternals etc ...) Malicious Library UPX AntiDebug AntiVM PE File PE32 VirusTotal Malware Buffer PE Code Injection buffers extracted RWX flags setting unpack itself Windows utilities WriteConsoleW Tofsee Windows ComputerName crashed	2 Keyword trend analysis	2	1		9.2		23	ZeroCERT

First
1
Last
Total : 3cnts