Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-09-12 15:15	PublicDwlBrowser144.exe 350591b477d7865635d863aec5da6379 Gen1 Generic Malware Malicious Library Malicious Packer UPX DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Internet API FTP ScreenShot Http API Steal credential Downloader P2P persistence AntiDebug AntiVM PE F Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW installed browsers check Tofsee Ransomware Windows Browser ComputerName DNS Cryptographic key Software crashed	12 Keyword trend analysis Info https://iplogger.org/1aGEa7 https://wheelllc.bar/api.php https://phonefix.bar/ https://iplogger.org/1c6My7 https://phonefix.bar/api.php?getusers https://startupmart.bar/?user_auth=p4_4 https://startupmart.bar/?user_auth=p4_5 https://startupmart.bar/?user_auth=p4_6 https://startupmart.bar/?user_auth=p4_7 https://startupmart.bar/?user_auth=p4_1 https://startupmart.bar/?user_auth=p4_2 https://startupmart.bar/?user_auth=p4_3	9	1		15.0	M	23	ZeroCERT

2	2021-09-12 14:59	PublicDwlBrowser155.exe efd2271a92f99161e7e5979606725272 Gen1 Generic Malware Malicious Library Malicious Packer UPX DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Internet API FTP ScreenShot Http API Steal credential Downloader P2P persistence AntiDebug AntiVM PE F Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency AutoRuns suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW installed browsers check Tofsee Ransomware Windows Browser ComputerName DNS Cryptographic key Software crashed	12 Keyword trend analysis Info https://startupmart.bar/?user_auth=p5_5 https://startupmart.bar/?user_auth=p5_4 https://startupmart.bar/?user_auth=p5_7 https://startupmart.bar/?user_auth=p5_6 https://startupmart.bar/?user_auth=p5_1 https://startupmart.bar/?user_auth=p5_3 https://startupmart.bar/?user_auth=p5_2 https://phonefix.bar/ https://phonefix.bar/api.php?getusers https://iplogger.org/1EWai7 https://wheelllc.bar/api.php https://iplogger.org/1aHEa7	10	1		15.0	M	23	ZeroCERT

First
1
Last
Total : 2cnts