Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-08-07 14:02	askinstall53.exe 9192eed4f3433a1fe590754041c0a0cf Gen2 Trojan_PWS_Stealer NPKI Emotet RAT Credential User Data Generic Malware UPX Malicious Packer Malicious Library SQLite Cookie Admin Tool (Sysinternals etc ...) Anti_VM ASPack Antivirus OS Processor Check PE File PE32 ELF PNG Format PE64 DLL MSOffic Browser Info Stealer VirusTotal Malware PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Checks debugger WMI Creates executable files exploit crash unpack itself Windows utilities suspicious process AppData folder WriteConsoleW installed browsers check Tofsee Ransomware Windows Exploit Browser ComputerName Remote Code Execution DNS crashed	4 Keyword trend analysis	9 Info www.listincode.com(144.202.76.47) - mailcious www.nincefcs.xyz(188.225.87.175) - mailcious www.iyiqian.com(103.155.92.58) - mailcious iplogger.org(88.99.66.31) - mailcious 88.99.66.31 - mailcious 144.202.76.47 - mailcious 188.225.87.175 - mailcious 45.227.253.62 - malware 103.155.92.58 - mailcious	1	3	11.8	M	51	ZeroCERT

2	2021-08-07 14:00	askinstall40.exe a86d2af2833f8cc15ad5bca904660fad Gen2 Trojan_PWS_Stealer NPKI Emotet RAT Credential User Data Generic Malware UPX Malicious Packer Malicious Library SQLite Cookie Admin Tool (Sysinternals etc ...) Anti_VM ASPack Antivirus OS Processor Check PE File PE32 ELF PNG Format PE64 DLL MSOffic Browser Info Stealer VirusTotal Malware PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Checks debugger WMI Creates executable files exploit crash unpack itself Windows utilities suspicious process AppData folder WriteConsoleW installed browsers check Tofsee Ransomware Windows Exploit Browser ComputerName Remote Code Execution crashed	4 Keyword trend analysis	8	1	3	11.2	M	41	ZeroCERT

3	2021-08-05 10:12	askinstall55.exe 1219ec0cfe2e0dfa88dae43f713b1a94 Trojan_PWS_Stealer Gen2 NPKI BitCoin Credential User Data Generic Malware Malicious Packer UPX Malicious Library SQLite Cookie Anti_VM DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Internet API FTP ScreenS Browser Info Stealer VirusTotal Malware PDB suspicious privilege Code Injection Malicious Traffic Checks debugger WMI Creates executable files exploit crash unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW installed browsers check Tofsee Windows Exploit Browser ComputerName Remote Code Execution crashed	4 Keyword trend analysis	8	1	3	11.4	M	51	ZeroCERT

First
1
Last
Total : 3cnts