Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-10-15 09:42	vbc.exe 607afbfc6f90d724bd7014ca4ab30be5 PWS .NET framework Generic Malware AntiDebug AntiVM PE File PE32 .NET EXE FormBook Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself	20 Keyword trend analysis Info http://www.yourhomestimate.com/wogm/?jDKP8=OiSf9jV3Npz/RZJgbb0bKL9e2athsvXRQV6jCPdiTUSk124+vr4+cLKhD6dZYTypWjoW5Nc5&8p3=IbtHbD http://www.eygtogel021.com/wogm/ http://www.pokipass-niigata.com/wogm/ http://www.muescabynes.quest/wogm/ http://www.muescabynes.quest/wogm/?jDKP8=Cp2YzvgLUfohnHjhVFBNosoQ2J5qGB8UGxOLTRa7K8nkaGFbF9DyFpQO+4Qxvwo23h3ZSf7z&8p3=IbtHbD http://www.workospbit.space/wogm/ http://www.pokipass-niigata.com/wogm/?jDKP8=5JB5Sfq0uItgtJtC5HDt9qd+awyibUOSqveCkor2hMTAiAHHLxQY8a2Rwp3Q+p3+yguzgVgy&8p3=IbtHbD http://www.workospbit.space/wogm/?jDKP8=tAL4F5NLH4VmvVC1AGtDqpAVgb8tD+i+qrKuhbccqAXskllAguOxxUH0apD5Y6EEQuKJRsNk&8p3=IbtHbD http://www.insightmyhome.com/wogm/?jDKP8=85BUmEEX/LdX7Ydf+9I0bWyJhbr74kbGW+J4EcMhGlvjV6F5mj5NWVmgik83SynmBl96r7SB&8p3=IbtHbD http://www.straetah.com/wogm/ http://www.weeklywars.com/wogm/ http://www.sinagropuree.com/wogm/ http://www.weeklywars.com/wogm/?jDKP8=4vPo1SJ4QXujYzlw76fQXs7HvlTQbV0+0txMnGRghQaMN633jA6UZgSWswdwEnRAOgPWuZC1&8p3=IbtHbD http://www.blessedfurnitures.com/wogm/ http://www.insightmyhome.com/wogm/ http://www.blessedfurnitures.com/wogm/?jDKP8=zV6Dv0kcLx7IGnnwhXAN0xDRsIYVVts8P2q2S3hOBQp88DOpKfnLZ8aifiCKR08hOFrs3RzE&8p3=IbtHbD http://www.eygtogel021.com/wogm/?jDKP8=OLfsUZOZM89huaQ2Rhq4Iq6vg35ZMytgB5JTmZSEOAiHvxtp6AgRBdz2Ob59YcBboWHm0lh9&8p3=IbtHbD http://www.sinagropuree.com/wogm/?jDKP8=nwMgSNojV35EyJ9hphk06is8J3BDs4E1a66hewTnIuP7M3cS+zLeGjThioYS1Y8r0L7sYBrx&8p3=IbtHbD http://www.straetah.com/wogm/?jDKP8=VugJ8iGiQbMyEpiZcguIhpak7udmJ3C00wBMtiXi6+Au/rTbCR/obkne6QZn8sjGYaJfXaMw&8p3=IbtHbD http://www.yourhomestimate.com/wogm/	21 Info www.workospbit.space(185.215.4.14) www.yourhomestimate.com(198.54.117.244) www.straetah.com(104.18.26.58) www.pokipass-niigata.com(183.181.96.120) www.blessedfurnitures.com(104.21.9.160) www.eygtogel021.com(172.67.200.237) www.chantaldesign.space() www.sinagropuree.com(154.23.109.132) www.insightmyhome.com(5.79.70.98) www.weeklywars.com(34.102.136.180) www.muescabynes.quest(37.123.118.150) 37.123.118.150 - mailcious 183.181.96.120 172.67.200.237 - mailcious 154.23.109.132 34.102.136.180 - mailcious 198.54.117.244 - phishing 185.215.4.14 5.79.70.98 104.21.9.160 104.18.26.58	1		8.2	M	18	ZeroCERT

2	2021-10-14 15:35	rundll32.exe 51dcc89ed1035a6c2fc57ada8dcb4dc2 PWS .NET framework Generic Malware AntiDebug AntiVM PE File PE32 .NET EXE FormBook Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself	10 Keyword trend analysis Info http://www.healthyweekendtips.com/fqiq/?tXU4=nFNrhldW1G3Iuc6NBw1UbSwwpktYb/50pHeyo/0a7tjLnrEnAw7KG36PTjcGJ5KEduXnU9Wd&Ulq86=GTgP1na8nVSXkp http://www.srofkansas.com/fqiq/ http://www.ecarehomes.com/fqiq/ http://www.esyscoloradosprings.com/fqiq/ http://www.hirayaawards.com/fqiq/ http://www.esyscoloradosprings.com/fqiq/?tXU4=KZhYdxsCK4fJ4m+EpksKfhNe7DL7yKRLCyuZj4rSbKSeqpNQJyJA+YHOsqPeAHgrxeW9DyCb&Ulq86=GTgP1na8nVSXkp http://www.srofkansas.com/fqiq/?tXU4=wFDpWBcybTtkZf6rJwxG8GxnrXCHdVwe5dpvC2P+G/35kvGl/Iz1QduPYt3eFaCRSD2mr4cI&Ulq86=GTgP1na8nVSXkp http://www.healthyweekendtips.com/fqiq/ http://www.ecarehomes.com/fqiq/?tXU4=kE7Vu6vPDcd1WfWVKKteHdpK4u5SUBt14Yatq6Mzh32VxiCRLzk8hIpR+XL7Q/vEg46arPR2&Ulq86=GTgP1na8nVSXkp http://www.hirayaawards.com/fqiq/?tXU4=ioMS2OB6gtffPyZHC2v0o2NbJMBvgda4J5Uj88jwpqxw8lz3q3Yy68AoxtXePEBB3Y0v4zlH&Ulq86=GTgP1na8nVSXkp	13 Info www.healthyweekendtips.com(172.67.216.2) www.kirtansangeet.com(62.138.8.22) www.pharmacistcharisma.com() www.srofkansas.com(199.59.242.153) www.qywyfeo8.xyz() www.esyscoloradosprings.com(108.167.135.122) www.ecarehomes.com(34.102.136.180) www.hirayaawards.com(172.217.175.51) 104.21.78.41 - phishing 108.167.135.122 34.102.136.180 - mailcious 199.59.242.153 - mailcious 74.125.204.121	2		9.2		11	ZeroCERT

First
1
Last
Total : 2cnts