No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2024-02-02 09:25 |
AquariumScreening.exe b74af6f8231cb0dd8dbaa270e215a7bbEmotet Suspicious_Script_Bin Downloader Malicious Library UPX Admin Tool (Sysinternals etc ...) DNS Create Service Socket DGA Http API ScreenShot Escalate priviledges Steal credential PWS Hijack Network Sniff Audio HTTP Code injection Internet API persist VirusTotal Malware Buffer PE AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW VM Disk Size Check Windows ComputerName Remote Code Execution |
1 | 13.0 | M | 23 | ZeroCERT | |||||||||||||||||
|