Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2023-08-12 18:56	2222222.exe 4ce7297247872bc04141ffb84d1220d0 Generic Malware Antivirus .NET EXE PE File PE32 VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote suspicious process Windows ComputerName Cryptographic key crashed					9.6	M	36	ZeroCERT

2	2023-08-12 18:56	11111.exe 71f5c9fd9164173cb2bcbff0b14087ba Client SW User Data Stealer Backdoor RemcosRAT browser info stealer Generic Malware Google Chrome User Data Downloader Antivirus Create Service Socket Escalate priviledges PWS Sniff Audio DNS ScreenShot Internet API KeyLogger AntiDebug AntiVM .NET EXE PE VirusTotal Malware powershell Buffer PE suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself suspicious process malicious URLs Windows ComputerName DNS Cryptographic key DDNS crashed keylogger		2			13.8	M	48	ZeroCERT

3	2022-03-24 10:03	vbc.exe 0cfadcd92623a5a2da7d2f661235c9be RAT Malicious Packer Admin Tool (Sysinternals etc ...) UPX Socket DNS AntiDebug AntiVM OS Processor Check .NET EXE PE File PE32 VirusTotal Malware PDB suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Checks Bios Detects VirtualBox VMware anti-virtualization Windows ComputerName Cryptographic key Software	11 Keyword trend analysis Info http://www.sd-pefilm.com/bffc/?t8o=RsWnYJNb+sw9aXIWbjGfexsn3modW5Ioeu5ZEDIHxW7GwPyPZWMMidm+bsW5SmkyKEzlF1/o&UlX=XvLHM http://www.calebtristan5000.com/bffc/?t8o=yChyGWxChJM6wRd0zLIZ1KtIZk1Gm8bs7+FR8LneKy6HwNC3dCh7xkd7sFAuzBmdv0rOK50e&UlX=XvLHM http://www.thewoodcockinn.com/bffc/?t8o=7z2WY6iHjMZGNyD2w27ZAGySU3hxFgW6yfS2CWAjbbK+8IcF3TFg3vbhT3ikcf7JbCqWsMw+&UlX=XvLHM http://www.softautumnhum.com/bffc/?t8o=4PmOpLh336eI6AKySk7B5HUdYDOpzJ1bIuHCJMtn865DWS3R/ZeLGbsOuZET7EmJPyhRawrF&UlX=XvLHM http://www.my-hotel.net/bffc/?t8o=Eum9IRe9WZzZmCuwScPoB1x/7WOZpVdvLwFDhI29+gzOLPZh43/WfBj14iqLkBGrcyv4yj8p&UlX=XvLHM http://www.acuityair.com/bffc/?t8o=zj3RCgzdX4nU2DZNSAJTXdbtZNwQnmfn215HCQ+SYiwI7Qtwp2+djJluR6KhhsSt17u7/SKY&UlX=XvLHM http://www.mississaugaremax.online/bffc/?t8o=9PaE50fDJoLQGowHlLoTKrRDUIOA2CruKlIaNYmhA5P/x82zJ4Ed+iqqjZVUYJRxI+a4GVAN&UlX=XvLHM http://www.adrianaassis.online/bffc/?t8o=WjxdRYBH8iW+ZQP3NEstT+jNjXBgHyRMyV+/YuDwt1/uU74lo+sRb5mnToBmSpzc3aR3PeEC&UlX=XvLHM http://www.bruztricks.xyz/bffc/?t8o=EFocd/+6qjg8e5T2cKR8tg9x/OMDR22RJI3TaVsp2FHODOCKFOYrtAwKw3M2S7hGOJuoMIVL&UlX=XvLHM http://www.highestwedding.com/bffc/?t8o=rWFJi35HQE8xkecqAzlVB39gkDZGySRY257u/hP4ryK8y9Q9fj0Pz2cZNbr3K3KLKzkd73Eb&UlX=XvLHM http://www.sdclick.com/bffc/?t8o=bpaApl6njp4tz7nxPkyCHFArFuOUHpxC+MlzH2THHV4KmgaCsuClUFkLzmbDSwmqx7R6fWKE&UlX=XvLHM	25 Info www.tcbacal.com() www.shiningstarskennel.com() www.calebtristan5000.com(162.241.217.159) www.adrianaassis.online(34.102.136.180) www.highestwedding.com(136.144.230.6) www.sdclick.com(156.239.98.180) www.baixingzb.com() www.thewoodcockinn.com(185.151.30.138) www.acuityair.com(192.154.231.174) www.softautumnhum.com(34.225.31.148) www.sd-pefilm.com(172.67.129.118) www.my-hotel.net(156.240.160.105) www.mississaugaremax.online(209.17.116.163) www.bruztricks.xyz(185.151.30.177) 156.240.160.105 209.17.116.163 - mailcious 156.239.98.180 185.151.30.177 - mailcious 192.154.231.174 34.102.136.180 - mailcious 136.144.230.6 162.241.217.159 185.151.30.138 - mailcious 34.225.31.148 - phishing 172.67.129.118			13.8	M	26	ZeroCERT

First
1
Last
Total : 3cnts