No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-07-04 11:10 |
msiexec.exe c67b1ffb63818072eb4cc935b3f51ed5Cryptocurrency_miner RAT Generic Malware Antivirus PE File .NET EXE PE32 VirusTotal Cryptocurrency Miner Malware Cryptocurrency AutoRuns MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Auto service Check virtual network interfaces suspicious process sandbox evasion Windows Browser DNS |
3
|
3 | 7 | 3 | 8.2 | M | 21 | ZeroCERT | ||||||||||||||
|
||||||||||||||||||||||||
2 | 2021-04-24 18:01 |
godeth.exe e3b8893e65bdb0f42574c0f7e05ec8ceAsyncRAT backdoor VirusTotal Malware AutoRuns suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName |
12.8 | M | 41 | ZeroCERT | ||||||||||||||||||
|