No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2023-08-21 10:21 |
1808tui.exe 34dc3b6f5ad9472d3eee5fe006b97b4aGen1 Emotet .NET framework(MSIL) UPX Malicious Library PWS SMTP Socket DNS Javascript_Blob AntiDebug AntiVM PE File .NET EXE PE32 CAB PE64 PNG Format JPEG Format Lnk Format GIF Format Browser Info Stealer FTP Client Info Stealer VirusTotal Malware AutoRuns PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces AppData folder installed browsers check Interception Windows Browser ComputerName DNS Cryptographic key Software crashed |
11
|
10 | 18.4 | M | 40 | ZeroCERT | ||||||||||||||||
|