Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-10-26 09:42	DownFlSetup122.exe 6007b1c2218055d3167cdee441c6ad4c Emotet RAT PWS .NET framework Generic Malware UPX PE File PE32 .NET EXE OS Processor Check Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files ICMP traffic unpack itself Collect installed applications Check virtual network interfaces AppData folder installed browsers check Tofsee Windows Browser Email ComputerName DNS Cryptographic key Software crashed	11 Keyword trend analysis Info https://niemannbest.me/?user=p12_4 - rule_id: 6275 https://niemannbest.me/?user=p12_5 - rule_id: 6275 https://niemannbest.me/?user=p12_6 - rule_id: 6275 https://niemannbest.me/?user=p12_7 - rule_id: 6275 https://niemannbest.me/?user=p12_1 - rule_id: 6275 https://niemannbest.me/?user=p12_2 - rule_id: 6275 https://niemannbest.me/?user=p12_3 - rule_id: 6275 https://speeddatingstudio.com/ - rule_id: 5782 https://iplogger.org/1a5jd7 https://iplogger.org/1a4jd7 https://api.ip.sb/ip	16 Info speeddatingstudio.com(104.21.94.228) - mailcious iplogger.org(88.99.66.31) - mailcious querahinor.xyz(45.129.99.59) the-lead-bitter.com(104.21.66.135) - mailcious niemannbest.me(172.67.221.103) - mailcious api.ip.sb(172.67.75.172) 172.67.160.101 172.67.140.223 - mailcious 45.129.99.59 172.67.221.103 104.26.12.31 88.99.66.31 - mailcious 67.198.134.186 111.90.146.149 - malware 193.150.103.37 172.67.188.154	1	8	13.0	M	24	ZeroCERT

First
1
Last
Total : 1cnts