No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-07-14 17:00 |
rc.exe 0d1a243f89e21f7c54a6210e5aa36d69UPX DGA DNS Socket Create Service Sniff Audio HTTP Escalate priviledges KeyLogger FTP Code injection Http API Internet API Steal credential ScreenShot Downloader P2P AntiDebug AntiVM PE32 PE File VirusTotal Malware Buffer PE AutoRuns suspicious privilege Code Injection buffers extracted Creates executable files ICMP traffic RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName keylogger |
1
|
4 | 16.0 | 36 | ZeroCERT | |||||||||||||||||
|