No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-07-14 09:03 |
P0weOPjsmVN5OCW.exe 98967ce40ebd4dac5ec4c937b9c755a3PWS .NET framework Generic Malware Admin Tool (Sysinternals etc ...) Antivirus SMTP KeyLogger AntiDebug AntiVM PE32 PE File .NET EXE VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself Windows utilities powershell.exe wrote suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed |
11.8 | 51 | ZeroCERT | |||||||||||||||||||
|
||||||||||||||||||||||||
2 | 2021-05-25 18:13 |
4hKre9EL6dUlIXf.exe 44ce3829d2bed5adf00008a95b6b57c2PWS .NET framework Malicious Library SMTP KeyLogger AntiDebug AntiVM .NET EXE PE File PE32 VirusTotal Malware PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed |
11.0 | 13 | ZeroCERT | |||||||||||||||||||
|