No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-05-11 16:11 |
fgmq.exe 355160860209999220faf31b76ba7a80AsyncRAT backdoor AgentTesla SMTP KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows ComputerName Cryptographic key crashed |
9.4 | 20 | ZeroCERT | |||||||||||||||||||
|
||||||||||||||||||||||||
2 | 2021-05-11 16:09 |
PLP_017542000.exe 217779bed934af71afc6c861f99ff065PWS Loki[b] Loki[m] AsyncRAT backdoor DNS AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs AntiVM_Disk VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS Cryptographic key Software crashed |
1 | 13.4 | 25 | ZeroCERT | ||||||||||||||||||
|