No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2024-04-30 07:39 |
lbb.exe e990e7571cdb06c5d0f093176cecf414BlackMatter Ransomware PE File PE32 VirusTotal Malware unpack itself |
2.2 | M | 62 | ZeroCERT | ||||||||||||||||||
|
||||||||||||||||||||||||
2 | 2024-04-30 07:35 |
lb.exe 6fd558cf3add096970e15d1e62ca1957BlackMatter Ransomware PE File PE32 VirusTotal Malware unpack itself |
2.2 | 63 | ZeroCERT | |||||||||||||||||||
|
||||||||||||||||||||||||
3 | 2022-09-27 09:19 |
gakedq.exe 91c6f94281919863eb0b6c14db85cb43PWS[m] RAT UPX Admin Tool (Sysinternals etc ...) SMTP KeyLogger AntiDebug AntiVM PE32 PE File .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW Tofsee Windows Browser Email ComputerName Cryptographic key Software crashed keylogger |
2 | 2 | 16.8 | M | 35 | ZeroCERT | ||||||||||||||||
|