No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2023-06-01 09:41 |
IMG_3360_103pdf.exe 59ed8fb12afa93b7e89a6d5282a617f0Loki_b Loki_m PWS .NET framework Generic Malware Antivirus Socket DNS PWS[m] AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware powershell Buffer PE suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote suspicious process malicious URLs installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software |
1
|
1 | 16.2 | M | 48 | ZeroCERT | ||||||||||||||||
|