Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-11-01 11:37	rollerkind.exe f12a2a6e1d8b3c7e2e998e808da6ac3a Malicious Library UPX Socket Internet API Code injection KeyLogger Escalate priviledges ScreenShot AntiDebug AntiVM PE File OS Processor Check PE32 Malware download VirusTotal Malware PDB Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder malicious URLs suspicious TLD anti-virtualization Tofsee Windows DNS Downloader	4 Keyword trend analysis	5	8 Info ET USER_AGENTS Suspicious User-Agent (AutoHotkey) ET HUNTING SUSPICIOUS Firesale gTLD EXE DL with no Referer June 13 2016 ET INFO HTTP Request to a .top domain ET DNS Query to a .top domain - Likely Hostile SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING Possible EXE Download From Suspicious TLD		10.8		25	ZeroCERT

First
1
Last
Total : 1cnts