Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-10-18 09:31	DownFlSetup166.exe 9f34928ecd64f71c6f2a7cdd85740586 RAT PWS .NET framework Generic Malware Themida Packer Admin Tool (Sysinternals etc ...) Anti_VM Malicious Library UPX PE File PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Checks Bios Collect installed applications Detects VMWare Check virtual network interfaces AppData folder VMware anti-virtualization installed browsers check Tofsee Windows Browser Email ComputerName Firmware DNS Cryptographic key Software crashed	9 Keyword trend analysis Info http://apps.identrust.com/roots/dstrootcax3.p7c https://iplogger.org/1IXpS https://iplogger.org/1qdds7 https://groo.extralive.site/ https://niemannbest.me/?username=p16_1 - rule_id: 6275 https://niemannbest.me/?username=p16_3 - rule_id: 6275 https://niemannbest.me/?username=p16_5 - rule_id: 6275 https://niemannbest.me/?username=p16_7 - rule_id: 6275 https://niemannbest.me/?username=p16_6 - rule_id: 6275	16 Info online-stock-solutions.com(172.67.144.208) groo.extralive.site(45.130.41.15) speeddatingstudio.com(104.21.94.228) - mailcious iplogger.org(88.99.66.31) - mailcious querahinor.xyz(45.129.99.59) niemannbest.me(104.21.51.48) - mailcious apps.identrust.com(222.122.182.200) topniemannpickshop.cc() 45.129.99.59 172.67.144.208 88.99.66.31 - mailcious 104.21.94.228 172.67.221.103 188.68.201.6 121.254.136.57 45.130.41.15	2	5	17.2	M	21	ZeroCERT

First
1
Last
Total : 1cnts