No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2024-09-05 15:44 |
nothirdparty.exe 06b14e682a491946aac19067e8a30d32Gen1 Generic Malware Malicious Packer UPX Malicious Library Anti_VM AntiDebug AntiVM PE File PE32 OS Processor Check BMP Format MSOffice File JPEG Format Malware download FTP Client Info Stealer VirusTotal Malware c&c Code Injection Malicious Traffic Check memory unpack itself Windows utilities Collect installed applications suspicious process AppData folder sandbox evasion WriteConsoleW anti-virtualization installed browsers check Ransomware Stealc Stealer Windows Browser ComputerName DNS Software crashed plugin |
3
|
1 | 6 | 11.0 | 13 | ZeroCERT | ||||||||||||||||
|
||||||||||||||||||||||||
2 | 2024-09-05 15:41 |
raccountinfo.exe dcb295f480348248ee1ef163a5ba4df3Gen1 Malicious Packer UPX AntiDebug AntiVM PE File ftp PE32 OS Processor Check VirusTotal Malware Code Injection Check memory Checks debugger unpack itself WriteConsoleW ComputerName crashed |
5.4 | 16 | ZeroCERT | |||||||||||||||||||
|