Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-11-04 15:27	asdfg.exe 2df827a178fcfa149a64046339868665 PWS Loki[b] Loki.m RAT Gen1 Generic Malware UPX Malicious Packer Steal credential ScreenShot Http API Socket DNS Internet API HTTP KeyLogger AntiDebug AntiVM PE File PE32 .NET EXE OS Processor Check DLL Malware download Azorult VirusTotal Malware suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself AppData folder malicious URLs suspicious TLD Tofsee Windows ComputerName DNS Cryptographic key crashed	7 Keyword trend analysis	8	6 Info ET DROP Spamhaus DROP Listed Traffic Inbound group 25 ET POLICY PE EXE or DLL Windows file download HTTP SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) ET MALWARE AZORult v3.3 Server Response M3 ET INFO TLS Handshake Failure ET DNS Query to a *.top domain - Likely Hostile		15.8		27	ZeroCERT

First
1
Last
Total : 1cnts