Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2024-02-25 18:14	Bitter.exe 17fa8319d0f676b0a4e69d629e3b46a3 Malicious Library Malicious Packer UPX PE32 PE File OS Processor Check VirusTotal Malware Remote Code Execution crashed					2.2		51	ZeroCERT

2	2023-11-17 18:36	update.exe bcabfc8a72168c9c59967950ba586367 Gen1 Malicious Library UPX Malicious Packer PE32 PE File DLL OS Processor Check Browser Info Stealer Malware download VirusTotal Malware RecordBreaker MachineGuid Malicious Traffic Check memory Creates executable files unpack itself Collect installed applications AppData folder installed browsers check Stealer Windows Update Browser DNS	9 Keyword trend analysis Info http://193.233.132.13/4b3d724e3280557cef4603019e268268 http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/sqlite3.dll http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/mozglue.dll http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/freebl3.dll http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/nss3.dll http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/softokn3.dll http://193.233.132.13/ http://193.233.132.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/msvcp140.dll	1	11 Info ET MALWARE Win32/RecordBreaker CnC Checkin M1 ET MALWARE Win32/RecordBreaker CnC Checkin - Server Response ET INFO Dotted Quad Host DLL Request ET HUNTING HTTP GET Request for nss3.dll - Possible Infostealer Activity ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING HTTP GET Request for vcruntime140.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for mozglue.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for freebl3.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for softokn3.dll - Possible Infostealer Activity ET HUNTING HTTP GET Request for sqlite3.dll - Possible Infostealer Activity ET HUNTING Possible Generic Stealer Sending System Information		7.2	M	40	ZeroCERT

3	2023-09-21 09:35	Bitter.exe 17fa8319d0f676b0a4e69d629e3b46a3 Malicious Library UPX Malicious Packer PE File PE32 OS Processor Check VirusTotal Malware Remote Code Execution crashed					1.8		24	ZeroCERT

4	2023-02-07 17:30	video.exe aa4963a84a64c472e1404a7c99d720d9 Anti_VM Malicious Library UPX PE32 OS Processor Check PE File VirusTotal Malware unpack itself Remote Code Execution					3.2	M	48	ZeroCERT

First
1
Last
Total : 4cnts