| No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | 2022-09-25 19:06 |
 krnl_bootstrapper.exe f14153bbd95fc26d9ccea77c49cf09b9RAT Gen2 Gen1 PWS .NET framework Formbook Generic Malware Downloader ILProtector Packer Malicious Library UPX Malicious Packer Anti_VM Admin Tool (Sysinternals etc ...) PE32 PE File .NET EXE .NET DLL DLL OS Processor Check MSOffice File VirusTotal Malware PDB suspicious privilege Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Check virtual network interfaces AppData folder Tofsee Ransomware Windows Cryptographic key |
4
|
6 | 1 | 5.8 | M | 7 | ZeroCERT | |||||||||||||||
|
|
||||||||||||||||||||||||
| 2 | 2021-03-23 11:23 |
 krnl_console_bootstrapper.exe 8f251ae83b2c4898354f35d4bbba2c03Emotet AsyncRAT backdoor VirusTotal Malware PDB Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces WriteConsoleW Tofsee Windows |
2
|
4 | 1 | 4.2 | M | 13 | ZeroCERT | |||||||||||||||
|
|
||||||||||||||||||||||||
- First
- 1
- Last
- Total : 2cnts