Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-07-04 11:10	msiexec.exe c67b1ffb63818072eb4cc935b3f51ed5 Cryptocurrency_miner RAT Generic Malware Antivirus PE File .NET EXE PE32 VirusTotal Cryptocurrency Miner Malware Cryptocurrency AutoRuns MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Auto service Check virtual network interfaces suspicious process sandbox evasion Windows Browser DNS	3 Keyword trend analysis	3	7 Info ET INFO Executable Download from dotted-quad Host ET HUNTING Suspicious csrss.exe in URI ET INFO Packed Executable Download ET POLICY PE EXE or DLL Windows file download HTTP ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET POLICY Cryptocurrency Miner Checkin	3	8.2	M	21	ZeroCERT

2	2021-04-24 18:01	godeth.exe e3b8893e65bdb0f42574c0f7e05ec8ce AsyncRAT backdoor VirusTotal Malware AutoRuns suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName					12.8	M	41	ZeroCERT

First
1
Last
Total : 2cnts