| No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | 2023-07-18 07:31 |
 rxtygf.exe ad607f046a6f855f06d0e7b2cab189c1.NET framework(MSIL) Admin Tool (Sysinternals etc ...) Malicious Library Http API Escalate priviledges HTTP Internet API AntiDebug AntiVM .NET EXE PE File PE32 Browser Info Stealer VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files ICMP traffic unpack itself Windows utilities suspicious process malicious URLs AntiVM_Disk WriteConsoleW VMware Ransom Message IP Check VM Disk Size Check Tofsee Ransomware Windows Browser Tor ComputerName Cryptographic key |
3
|
4 | 2 | 1 | 18.0 | 26 | ZeroCERT | |||||||||||||||
|
|
||||||||||||||||||||||||
- First
- 1
- Last
- Total : 1cnts