Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2023-05-22 08:55	vbc.exe d0e186f273092a0c6a005cd1c46555bc Loki Loki_b Loki_m Formbook DNS PWS[m] AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs installed browsers check Browser Email ComputerName DNS Software	1 Keyword trend analysis	1	7 Info ET MALWARE LokiBot User-Agent (Charon/Inferno) ET MALWARE LokiBot Checkin ET MALWARE LokiBot Request for C2 Commands Detected M1 ET MALWARE LokiBot Application/Credential Data Exfiltration Detected M1 ET MALWARE LokiBot Request for C2 Commands Detected M2 ET MALWARE LokiBot Application/Credential Data Exfiltration Detected M2 ET MALWARE LokiBot Fake 404 Response	1	13.8	M	52	ZeroCERT

2	2023-05-10 18:57	vbc.exe 24429aa11d39dddc2e9daec4bcba9ed0 Formbook KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer Telegram PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces Tofsee Windows Browser ComputerName DNS crashed keylogger		2	4		9.6	M		ZeroCERT

3	2023-05-10 18:56	vbc.exe 953db0fa8e971527b18ae9abc387f7a2 Formbook KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows ComputerName crashed keylogger					9.6	M	25	ZeroCERT

4	2023-05-10 18:09	Wed.exe f92115170bf02c0ac2f6b1e7270dcfb6 Formbook .NET EXE PE File PE32 VirusTotal Malware PDB Check memory Checks debugger buffers extracted unpack itself					2.4	M	17	ZeroCERT

First
1
Last
Total : 4cnts