Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2024-04-12 15:04	111.exe 0af1ed1cf15b16ae613282a72ea4efe7 Generic Malware Malicious Library Admin Tool (Sysinternals etc ...) UPX PE File DllRegisterServer dll PE32 OS Processor Check VirusTotal Malware Remote Code Execution					2.2		36	ZeroCERT

2	2022-03-10 15:03	6572_1646604475_7943.exe 99f9c2a4b138a17ef3f955fbe400edab RAT PWS .NET framework PE File .NET EXE PE32 VirusTotal Malware Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces Tofsee ComputerName DNS	1 Keyword trend analysis	2	5 Info ET POLICY Observed DNS Query to File Transfer Service Domain (transfer .sh) ET INFO Commonly Abused File Sharing Site Domain Observed (transfer .sh in DNS Lookup) ET INFO TLS Handshake Failure ET INFO Commonly Abused File Sharing Site Domain Observed (transfer .sh in TLS SNI) SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)		3.4	M	40	ZeroCERT

First
1
Last
Total : 2cnts