No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2023-12-12 07:52 |
cp.exe 7603117e8e1611e887b8c6fccbdb9d4eDownloader Malicious Library VMProtect UPX Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Sniff Audio HTTP DNS Code injection Internet API persistence FTP KeyLogger P2P AntiDebug AntiVM PE32 PE File AutoRuns Code Injection Check memory Creates executable files unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName DNS |
2 | 6.2 | M | ZeroCERT | ||||||||||||||||||
|