Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2022-08-10 18:32	Screenshot 2022-08-10 10246345... 7c22121f33af2bad8656ac09300416ee UPX PE32 PE File PDB unpack itself					0.6			ZeroCERT

2	2021-10-21 08:33	FTD_21000160852.exe 63c984080f6aaec5b7f2dca4af13c5f8 RAT Generic Malware UPX SMTP KeyLogger AntiDebug AntiVM PE File OS Processor Check PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName Remote Code Execution DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	5	3		15.6		33	ZeroCERT

3	2021-10-20 17:52	tdh_0082205005img.exe 26108db5b69562376697d90215395c87 RAT Generic Malware UPX SMTP KeyLogger AntiDebug AntiVM PE File OS Processor Check PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName Remote Code Execution DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	3		15.0	M	37	ZeroCERT

4	2021-10-20 11:39	TDH_1366621005IMG.exe 6c616b75c178cecf679cd9b01c628c7a PWS Loki[b] Loki.m RAT Generic Malware UPX DNS AntiDebug AntiVM PE File OS Processor Check PE32 .NET EXE VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Remote Code Execution					10.4	M	11	ZeroCERT

5	2021-10-20 11:27	TDL_011560751103011IMG.exe 637c0a1232a65aba8a98acb8ec9787af RAT Generic Malware UPX SMTP KeyLogger AntiDebug AntiVM PE File OS Processor Check PE32 .NET EXE Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces suspicious process WriteConsoleW IP Check Tofsee Windows Browser Email ComputerName Remote Code Execution DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	3		15.2	M	28	ZeroCERT

First
1
Last
Total : 5cnts