Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2023-11-03 10:05	marikolock2.1.exe 1b4bc7eb054142c70e87755de845e039 Formbook NSIS Malicious Library UPX PE File PE32 OS Processor Check FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself Windows utilities AppData folder Windows	1 Keyword trend analysis	4	1	1	6.4	M	53	r0d

2	2023-11-03 09:33	marikolock2.1.exe 1b4bc7eb054142c70e87755de845e039 NSIS Malicious Library UPX PE File PE32 VirusTotal Malware suspicious privilege Check memory Creates executable files unpack itself					3.4	M	53	r0d

3	2023-10-28 12:46	marikolock2.1.exe 1b4bc7eb054142c70e87755de845e039 NSIS Malicious Library UPX PE File PE32 FormBook Malware download VirusTotal Malware suspicious privilege Malicious Traffic Check memory Creates executable files unpack itself	3 Keyword trend analysis Info http://www.517912.com/t6tg/?9r4P2=x+Kv6xpWcNesBkKfTwjNPM0LnGFvN7+CPVZKKdjbvYvOGsJKnhF5jBVeRF44UVI4ghuUdA3c&EjU4Sz=fdMTVRIPlB http://www.promushealth.com/t6tg/?9r4P2=7tYymCvuwOydaUuPNkovhG/t52+K0Kp+Kp8xcgM9C2uQN+XKa74YZrRvofV08ZJStB5H4sxz&EjU4Sz=fdMTVRIPlB http://www.uzmayaqoob.com/t6tg/?9r4P2=XP7jkasqkgrWx1C3rIh2LMmDsrx9AEXuv+yJvInbJHFGDwSK0i3nVRBGHVeWBLS+d5Gq1e4Y&EjU4Sz=fdMTVRIPlB	7	1		4.2	M	47	ZeroCERT

4	2022-08-07 13:08	linecol_v4.1.1.exe f6c8a8e5346a698e0733248a0ec6e323 UPX AntiDebug AntiVM PE32 PE File .NET EXE FormBook Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted ICMP traffic unpack itself Windows Cryptographic key	3 Keyword trend analysis Info http://www.skixxx.art/eni9/?CP=8fC1VFyiBxjG2FKgERhtVyvbtN1LIRoN7m7DuBSaip5Hl7AvBCFXn37Pru7su+Iy1mOTnz0Q&n4=Sxl0iBexVtEHj http://www.financialincubatorsolutions.com/eni9/?CP=g75aN7EngwiaxxJBLibYGDtiCu0cqaycQ9yycSDXNTNWeiWJRv3rDPs+tJ+V+YY4/DpguRM5&n4=Sxl0iBexVtEHj http://www.personalassistanttools.com/eni9/?CP=0VPhllV96M60aJ4/7wJgj3Q1obRKhQA324OWsfMx2aO5OwnWD17LCZy5gEcOsxpDI8HGxlwM&n4=Sxl0iBexVtEHj - rule_id: 20506	8	1	1	11.0	M	46	ZeroCERT

5	2022-08-04 09:28	photosonicSD.exe 5fe3fdf651b03ae9999f3235dc307d0e UPX AntiDebug AntiVM PE32 PE File .NET EXE FormBook Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows Cryptographic key	4 Keyword trend analysis Info http://www.anandajewelry.com/eni9/?p0D=6ZLf5iMOJm0eUx2t0ZCGm+gVhPQRXmqfjLmp0uOdYu/fJQ+h8I13SB0SsgWoh/XeibfpY7qK&1bj=ml88Y6ChM2yt - rule_id: 20698 http://www.ryluxglobal.online/eni9/?p0D=jAV7zaEMPQjvGlct8ubEDMs3At8CJ7gNwZZviUrvF6P3nT0GD43huyTQhTfkv8vMxzf7nOg1&1bj=ml88Y6ChM2yt http://www.taxikone.com/eni9/?p0D=R4ogXp1WuyCbRHfdlK9v5NWm0h69DXnnkHaWcl5Ln1TlN5H3t2zFs8NonGG25cM4l0ZVwEbp&1bj=ml88Y6ChM2yt http://www.yongdapiao.com/eni9/?p0D=RAyfbC1j9G+ETy+5bY2JjDCAFFwWVZUwWjB7dtQW2Vg6ghTTNuPWbDu2VtIjsEHO7oGtHUQh&1bj=ml88Y6ChM2yt	9	1	1	8.6	M	47	ZeroCERT

First
1
Last
Total : 5cnts