Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-07-12 09:53	bat_english.exe 2e666d262882b4262701b63378d44cb2 Gen1 PE File PE32 JPEG Format DLL OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Malicious Traffic Check memory WMI Creates executable files unpack itself Windows utilities Checks Bios Collect installed applications Detects VirtualBox Detects VMWare suspicious process AppData folder sandbox evasion WriteConsoleW VMware anti-virtualization installed browsers check Windows Browser Email ComputerName Firmware DNS Software crashed	10 Keyword trend analysis Info http://162.55.223.232/softokn3.dll http://162.55.223.232/947 http://162.55.223.232/msvcp140.dll http://162.55.223.232/ - rule_id: 2605 http://162.55.223.232/ http://162.55.223.232/freebl3.dll http://162.55.223.232/vcruntime140.dll http://162.55.223.232/mozglue.dll http://162.55.223.232/nss3.dll https://sergeevih43.tumblr.com/ - rule_id: 2338	3		2	16.6	M	48	ZeroCERT

2	2021-07-12 09:52	bat_update.exe bbf3c7740a3507b482260efa0b4c4a82 Gen1 PE File PE32 JPEG Format DLL OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Malicious Traffic Check memory WMI Creates executable files unpack itself Windows utilities Checks Bios Collect installed applications Detects VirtualBox Detects VMWare suspicious process AppData folder sandbox evasion WriteConsoleW VMware anti-virtualization installed browsers check Windows Update Browser Email ComputerName Firmware DNS Software crashed	10 Keyword trend analysis Info http://162.55.223.232/softokn3.dll http://162.55.223.232/947 http://162.55.223.232/msvcp140.dll http://162.55.223.232/ - rule_id: 2605 http://162.55.223.232/ http://162.55.223.232/freebl3.dll http://162.55.223.232/vcruntime140.dll http://162.55.223.232/mozglue.dll http://162.55.223.232/nss3.dll https://sergeevih43.tumblr.com/ - rule_id: 2338	3		2	15.8	M	33	ZeroCERT

First
1
Last
Total : 2cnts