Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2023-06-19 07:50	game.exe e94ec358349808b167fe25704bbb1c43 PWS .NET framework(MSIL) Gen1 Gen2 UPX Malicious Library Malicious Packer AntiDebug AntiVM .NET EXE PE32 PE File OS Processor Check DLL Browser Info Stealer Malware download VirusTotal Malware RecordBreaker Buffer PE MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications AppData folder installed browsers check Stealer Windows Browser DNS Cryptographic key	9 Keyword trend analysis Info http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/mozglue.dll http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/softokn3.dll http://5.42.64.17/50404579ee07953eb087d9c143270c92 http://5.42.64.17/ http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/msvcp140.dll http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/nss3.dll http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/sqlite3.dll http://5.42.64.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/freebl3.dll	2	11 Info ET MALWARE Win32/RecordBreaker CnC Checkin M1 ET MALWARE Win32/RecordBreaker CnC Checkin - Server Response ET INFO Dotted Quad Host DLL Request ET HUNTING HTTP GET Request for nss3.dll - Possible Infostealer Activity ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING HTTP GET Request for vcruntime140.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for mozglue.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for freebl3.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for softokn3.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for sqlite3.dll - Possible Infostealer Activity ET HUNTING Possible Generic Stealer Sending System Information		13.6		40	ZeroCERT

First
1
Last
Total : 1cnts