Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-11-17 08:40	chikwazx.exe 843f2acb5a70e82a543855e716b2ce9c Malicious Library UPX Create Service DGA Socket Steal credential DNS Internet API Code injection Sniff Audio HTTP KeyLogger FTP Escalate priviledges Downloader ScreenShot Http API P2P AntiDebug AntiVM PE File PE32 FormBook Emotet Malware download VirusTotal Malware Buffer PE AutoRuns Code Injection Malicious Traffic buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Tofsee Windows ComputerName Remote Code Execution DNS crashed	13 Keyword trend analysis Info http://www.scoocs.info/mvc8/?nvDHJR=gtxde&OB=QAAzND8Vxj93BCJLH8XgIAd3eRYPUgqMqPVn1TLvnMEe6LHU0Wi+2KqBt2GiAI542eN4rAsy http://www.revelstyle.com/mvc8/?nvDHJR=gtxde&OB=KhHkaqV2pxzYEtxXOZqKnhEwbBa2wcnXm5kmVMDYLytu5SuvIls9x4byPfBUNUaQ6aOXGnQK http://www.milda.digital/mvc8/?OB=OJsT9eH3LnjQtOzGcOYPuhYjtx5qQYRTS9x0zNEiZrL4/bWrgoursir8ZWswphyaFe+G5ldc&nvDHJR=gtxde http://www.littlekylskap.com/mvc8/?OB=tiKEbzLZZrUKsAwJ/sxTA6yr/f9nTFEDhFQFjdQ20YnCLi2G2MNGDcXIhk6bRdFS+fKrrCI7&nvDHJR=gtxde http://www.asagency.xyz/mvc8/?OB=rT3QEwb/ijRAARunaomLwNnxjKdMqrTAF8F7GGptv7DI/rJ5cOCbvg6zWvjFXKIlbm9DU/tu&nvDHJR=gtxde http://www.firmaheijnen.com/mvc8/?OB=G3ihUkZ6JzrBMvpKoqPcWz2/GlZM0MqsCKXd82wXT8+S+dFScJOu0IUCXrFkQKO8CwDlgHP7&nvDHJR=gtxde http://www.naamgem.com/mvc8/?OB=j3Af5XRUezgmydnFoRmHaFlLnKwILO/BWw6n020RcbV14pts70bSI32UY/qTuyhcmPhgBYQQ&nvDHJR=gtxde http://www.mab.network/mvc8/?OB=eWuQmXzSeweQoYJYQ6yiFuj5EqGrWBSiy/m6AxFgoQUAJO8BYoGzlM7Y1jLdth+BxTnG6yuX&nvDHJR=gtxde http://www.tokencord.com/mvc8/?OB=BYf0zAKtDQQZsdqaCgtJsqduoKFRddgui11PToTLy7RPVYSaKAlt7QUnj5utdKb5f8Jhp78W&nvDHJR=gtxde http://www.valentinaturals.com/mvc8/?nvDHJR=gtxde&OB=LFaWDNJJ8LwsB3Cvo+1/dtn/WK8C9mKXRffxxK6Vnpy7GUZK7Vfjv7Ih4ReBgetaAHZPyvaf http://www.staginglaneperf.com/mvc8/?OB=gFRqfEYC92qx40qqTbQRQqjNwW+J09ncvqNZ2WGC03WU9OF5aW6GAl5L4iOP3dH5WKMtam/o&nvDHJR=gtxde http://www.youandiconsulting.com/mvc8/?nvDHJR=gtxde&OB=EpC5wqvZS9F1/Tmlm5iLNBR8Q8YHzUAaJWzlNDHYOMZZB9lIYTkXOBtDpP8CfT99QMYyBIPx https://cdn.discordapp.com/attachments/907771805069115456/907930937109655562/Uxhjrkfgzxoigdcovhkknaxjaqdmkxy	30 Info www.scoocs.info(172.217.31.147) www.milda.digital(156.67.72.57) www.firmaheijnen.com(91.184.0.95) www.valentinaturals.com(100.24.208.97) www.naamgem.com(198.54.117.216) www.latinversionista.online() www.mab.network(139.99.69.103) www.revelstyle.com(52.58.78.16) www.youandiconsulting.com(34.102.136.180) www.staginglaneperf.com(205.178.144.150) www.littlekylskap.com(23.227.38.74) cdn.discordapp.com(162.159.129.233) - malware www.tokencord.com(162.243.47.214) www.asagency.xyz(192.64.119.138) www.mascotairportcarwash.online() www.lubot.net() 142.250.66.115 162.159.133.233 - malware 156.67.72.57 - phishing 192.64.119.138 198.54.117.210 - mailcious 162.243.47.214 52.58.78.16 - mailcious 205.178.144.150 34.102.136.180 - mailcious 35.172.94.1 - phishing 139.99.69.103 23.227.38.74 - mailcious 172.67.188.154 91.184.0.95 - mailcious	3		13.4		38	ZeroCERT

First
1
Last
Total : 1cnts