Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-06-24 23:20	download 6da66d1368f56a0da3977885bfba690b Gen2 Emotet PE File PE32 DLL OS Processor Check PE64 VirusTotal Malware AutoRuns suspicious privilege Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Windows utilities Auto service Check virtual network interfaces AppData folder sandbox evasion Tofsee Ransomware Windows ComputerName DNS	5 Keyword trend analysis Info http://flownetserv.com/static/media/build/Flow%20Browser%20-%20SearchBip/stable/win/x64/97856822509658/Setup.exe http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvYjFkQUFWdmlaXy12MHFUTGhWQUViMUVlUQ/0.57.44.2492_hnimpnehoodheedghdeeijklkeaacbdc.crx https://flownetserv.com/service/update2 https://flownetserv.com/service/update2?cup2key=10:2041637316&cup2hreq=c44ca074fab98820e0ddea4abd5bbe7984d55eefb00cbc75bdb2c1c68dce87ec https://soloyama.com/app.php?ping=f%3D1%26a%3D3100%26u%3Dfldk-20210619-4126222-fbchff02%26p%3Dpa%26ck%3D430179789257580636%2F	27 Info edgedl.me.gvt1.com(34.104.35.123) _googlecast._tcp.local() dns.google(8.8.8.8) r5---sn-3u-bh2d.gvt1.com(59.18.44.80) api.mywot.com(52.39.82.104) soloyama.com(217.182.133.190) accounts.google.com(172.217.161.45) www.google-analytics.com(172.217.174.110) secure.mywot.com(54.158.63.53) flownetserv.com(172.67.223.135) static.mywot.com(13.227.73.65) r5---sn-3u-bh2lk.gvt1.com(59.18.30.144) 142.250.207.78 172.67.223.135 59.18.44.80 142.250.196.131 172.217.26.35 59.18.30.144 172.217.31.131 13.225.134.82 193.70.47.128 35.83.118.206 65.8.17.57 172.217.161.65 - mailcious 34.104.35.123 142.250.199.77 52.54.193.222	2		8.8		17	ZeroCERT

First
1
Last
Total : 1cnts