No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2023-08-24 18:07 |
BelgiumchainAGRO.exe 58627a894535d0d34fc6a4e1f35609e7Generic Malware UPX Admin Tool (Sysinternals etc ...) Antivirus Http API HTTP Code injection Internet API AntiDebug AntiVM OS Processor Check PE File .NET EXE PE32 VirusTotal Malware powershell AutoRuns PDB suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote suspicious process AppData folder WriteConsoleW Windows ComputerName DNS Cryptographic key |
1 | 15.4 | M | 49 | ZeroCERT | |||||||||||||||||
|