Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2023-06-16 07:41	gjdj.exe fc32f42ee0146b5ac0d96e2f877e77bc Gen1 UPX Malicious Library Malicious Packer PE File PE32 OS Processor Check DLL Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency Telegram MachineGuid Malicious Traffic Check memory WMI Creates executable files unpack itself Collect installed applications sandbox evasion anti-virtualization installed browsers check Tofsee Browser Email ComputerName DNS Software	5 Keyword trend analysis	5	4		11.0	M	46	ZeroCERT

2	2023-06-15 07:28	dr_mails_.ipb.exe 956d79812c98bbb5f5ba609cba79d5ee AntiDebug AntiVM PE File PE32 Code Injection buffers extracted unpack itself crashed					5.4			ZeroCERT

3	2023-04-22 08:51	vbc.exe c167a030f4e6252f380c5d177282cfbe Formbook Emotet PWS .NET framework RAT Generic Malware Antivirus AntiDebug AntiVM .NET EXE PE32 PE File FormBook Malware download VirusTotal Malware powershell suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut unpack itself powershell.exe wrote Check virtual network interfaces suspicious process Windows ComputerName DNS Cryptographic key crashed	4 Keyword trend analysis Info http://www.hjd04b.com/my28/?8pgHjRdp=l6PR18TDP4lswArBVO5bAFPootK1SxL5gNddDcv8ESa3Cj6F17LLz9lgx0MVn3j38wYGOJcR&r6=X4XDHZU8s http://www.eoujkbvn.shop/my28/?8pgHjRdp=L4acUB+47lynVF4fjl9p6Di64KDq5P2gzlJCkdZJaqemyNdaz3c4hs19zS7nZyQH6vk86Fkh&r6=X4XDHZU8s http://www.49astleystreet.com/my28/?8pgHjRdp=+VAUe4t+xmaF92noBAsndN56+z0GlyZ4xiIxgvDciribSLdsxv7/Rp1zqOY349oGooJSGIY2&r6=X4XDHZU8s - rule_id: 28339 http://172.245.214.178/007/Fetsok.dat	7	1	1	12.2	M	24	ZeroCERT

First
1
Last
Total : 3cnts