Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1	2021-12-11 23:51	cc.exe 0f559c7ea254285bab84e60d2a5e8037 Malicious Library UPX KeyLogger ScreenShot AntiDebug AntiVM PE File PE32 VirusTotal Malware Buffer PE Code Injection buffers extracted RWX flags setting unpack itself Windows utilities WriteConsoleW Tofsee Windows ComputerName Remote Code Execution crashed	2 Keyword trend analysis	2	1		9.6	M	35	ZeroCERT

2	2021-12-11 23:19	rc.exe 8b416273ddf403092ec996125e35b2ab Gen2 Gen1 Generic Malware Malicious Library UPX Malicious Packer Create Service DGA Socket DNS Internet API Code injection Sniff Audio HTTP KeyLogger FTP Escalate priviledges Downloader ScreenShot P2P Steal credential Http API AntiDebug AntiVM PE File PE3 Emotet VirusTotal Malware AutoRuns Code Injection Check memory buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Tofsee Windows Remote Code Execution crashed	2 Keyword trend analysis	2	1		10.6	M	32	ZeroCERT

3	2021-09-17 10:07	sepcon.exe 8b932daa6b317c6baef47bf2a2646e38 UPX Malicious Library PE File PE32 VirusTotal Malware RWX flags setting unpack itself Tofsee Remote Code Execution crashed	1 Keyword trend analysis	2	1		3.2	M	42	ZeroCERT

4	2021-08-19 09:49	vbc.exe f5dd75dff7af606ddb23acee9872b6b2 UPX Malicious Library DGA DNS Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection HTTP Internet API FTP ScreenShot Http API Steal credential Downloader P2P AntiDebug AntiVM PE File PE32 FormBook Emotet Malware download VirusTotal Malware Buffer PE AutoRuns Code Injection Malicious Traffic buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities suspicious process WriteConsoleW Tofsee Windows ComputerName	29 Keyword trend analysis Info http://www.threatprotection.net/6mam/ http://www.miamiqueensdress.com/6mam/?WbTDk=EBok50QODh/qmCP7J2xI5qJEvLCVP7z6QxySw5ZUrU5I7S6miF2cwhtfnH/LuNQ5P6YcYCdk&oXMx2h=yRnHMfEXqtjp - rule_id: 3582 http://www.fuzhourexian.com/6mam/ - rule_id: 3580 http://www.blueline-productions.co.uk/6mam/ http://www.fuzhourexian.com/6mam/?WbTDk=qbpZFH7voKbXHHWLfMfEAiwyGaz4A1Dlq6aJ6MnbqPgDgfYDR2UnLoNROh/k48NFxcmn1xi3&oXMx2h=yRnHMfEXqtjp - rule_id: 3580 http://www.kykyryky.art/6mam/?WbTDk=YhmCqIEbUGfuw5buP1ux4NwPyUbKdSmuBWvVd54Q/24mN/u1gMwH9i6nnbSMiSrA5lPx01TB&oXMx2h=yRnHMfEXqtjp - rule_id: 3577 http://www.genesysshop.com/6mam/ - rule_id: 4000 http://www.ilovemehoodie.com/6mam/?WbTDk=WcJFy0FDyb1eQp1HHEDezlfsnB+bgSZ9M5sCd3/XEWVbVLaHwBgyDt5AxetLVNVTX35rQb0V&oXMx2h=yRnHMfEXqtjp - rule_id: 4001 http://www.mypursuitpodcast.com/6mam/?WbTDk=U4etKMGnApM4LPry/y2VHJ3U/bl1CG9Jeeehw1oO6+oHUhxigrqTTryZm0Ujj1iWyaAjlaMg&oXMx2h=yRnHMfEXqtjp http://www.bagyat.com/6mam/?WbTDk=iV+++IZpql/PnhwiHoT5F+UEaK9f6TfC+P1mkxzUfgS/Y+pmMP73bpSijNJOr1JGqobxJRWc&oXMx2h=yRnHMfEXqtjp http://www.genesysshop.com/6mam/?WbTDk=gbNVLwi1vO2ZsTKwdijolRE+nd+f4bOFGjLO6oLWdkpAXgcu19jDQ9iXEv77aHIk6xstCEEF&oXMx2h=yRnHMfEXqtjp - rule_id: 4000 http://www.ilovemehoodie.com/6mam/ - rule_id: 4001 http://www.mobiessence.com/6mam/ - rule_id: 3578 http://www.threatprotection.net/6mam/?WbTDk=5U63IG+8vBO93ME5ubhPJsaYeNu0pzfei2tMILncnfG3lfTZPYhqalgINgf11uesldX0DPY5&oXMx2h=yRnHMfEXqtjp http://www.delhibudokankarate.com/6mam/?WbTDk=Dhv3NEq6R5NPQZs0dIik/SqBuvIY1/ydOcIgQc1Go12Tt/gNYl4yWQ2VA57WdGuU8YdfRGOR&oXMx2h=yRnHMfEXqtjp - rule_id: 4168 http://www.amazebrowser.com/6mam/ - rule_id: 4002 http://www.amazebrowser.com/6mam/?WbTDk=bdYiy4dFQ1FKdK0RHZb8AKGKI6CI94rlWbRWgupG1OIMQwt3tgAXT6Nv0jCitXCfOrToZzYc&oXMx2h=yRnHMfEXqtjp - rule_id: 4002 http://www.delhibudokankarate.com/6mam/ - rule_id: 4168 http://www.mobiessence.com/6mam/?WbTDk=KE8gpfUGztMVNWKMFV5goIwNmc44LE6Oi+XDAS05rkp2RTHle1NPjBrPfhHuDJ31Wqk/Ne1S&oXMx2h=yRnHMfEXqtjp - rule_id: 3578 http://www.adenxsdesign.com/6mam/ - rule_id: 4003 http://www.adenxsdesign.com/6mam/?WbTDk=tU44klL44EKqmodFv/jg5nrIY8m9SPufik0gg789I5xKoKlf2FGRw1yhbPhqQNhokqqERcg/&oXMx2h=yRnHMfEXqtjp - rule_id: 4003 http://www.kykyryky.art/6mam/ - rule_id: 3577 http://www.blueline-productions.co.uk/6mam/?WbTDk=DNrR1GaWXHlbTOpdMpUbF0coFsiHOlXFagQQYcV57R3aprlTATx9iTyvS/+hnA5kOUeynF9h&oXMx2h=yRnHMfEXqtjp http://www.bagyat.com/6mam/ http://www.mypursuitpodcast.com/6mam/ http://www.miamiqueensdress.com/6mam/ - rule_id: 3582 https://onedrive.live.com/download?cid=7AD84143EE0A85E3&resid=7AD84143EE0A85E3%21122&authkey=APxDcNiaNod5Ikk https://dkyyda.sn.files.1drv.com/y4mrSimVfItmLHInNrSOJmhcu7jSN40x5ikR2n0jNVSGWcdC2tCdOiGTr4rigJL5sdDQ3GAZDSGjkFLKwcbPR2J-NBnZnhI8eC2Gkttmfb0hbRsQUXseigyCEA03KPHHw5YV_PP0de9LoaSk6O5SImU0jQhYk4bmDbERwII7h5Me9r9H0jwpYg-pfTPUVILyDYtxaM02eAiAksWwCQse3Pz4w/Cvieuwqzlnyecwrnrfxtrahtdbaboaj?download&psid=1 https://dkyyda.sn.files.1drv.com/y4m97_S5N0dD1MsmWaq0eYG0Sb7_XlfGPp7W0ONc_xDzt_HblQFoIpUN4BloCEjg8c5mWj_pPLTdK3USNiULYn8KSFtBVDT5ZMMUxo9BEFVfSlNYC9ZvXK6cCn9X_Ea6X9Eud5mrCSEIKB6Z2D5F0-aYMIvpgMQrOPwfWQl11H4pZxOl5LJi78yhlQq8bDMvbt7DlLP3RdQUbpBJO2ZsjqwSg/Cvieuwqzlnyecwrnrfxtrahtdbaboaj?download&psid=1	30 Info www.delhibudokankarate.com(154.215.87.120) onedrive.live.com(13.107.42.13) - mailcious dkyyda.sn.files.1drv.com(13.107.42.12) www.fuzhourexian.com(47.245.33.84) www.mobiessence.com(52.58.78.16) www.adenxsdesign.com(217.160.0.46) www.amazebrowser.com(207.244.67.214) www.miamiqueensdress.com(75.2.115.196) www.bagyat.com(209.99.40.222) www.threatprotection.net(52.58.78.16) www.kilbyrnefarm.com() www.mypursuitpodcast.com(34.102.136.180) www.blueline-productions.co.uk(85.233.160.23) www.coicplat.com() - mailcious www.genesysshop.com(34.102.136.180) www.ilovemehoodie.com(23.227.38.74) www.kykyryky.art(194.67.71.40) 154.215.87.120 - mailcious 52.58.78.16 - mailcious 47.245.33.84 - mailcious 37.48.65.148 194.67.71.40 13.107.42.13 - mailcious 13.107.42.12 - malware 209.99.40.222 - mailcious 34.102.136.180 - mailcious 75.2.115.196 - mailcious 217.160.0.46 - mailcious 85.233.160.22 - mailcious 23.227.38.74 - mailcious	2	18 Info http://www.miamiqueensdress.com/6mam/ http://www.fuzhourexian.com/6mam/ http://www.fuzhourexian.com/6mam/ http://www.kykyryky.art/6mam/ http://www.genesysshop.com/6mam/ http://www.ilovemehoodie.com/6mam/ http://www.genesysshop.com/6mam/ http://www.ilovemehoodie.com/6mam/ http://www.mobiessence.com/6mam/ http://www.delhibudokankarate.com/6mam/ http://www.amazebrowser.com/6mam/ http://www.amazebrowser.com/6mam/ http://www.delhibudokankarate.com/6mam/ http://www.mobiessence.com/6mam/ http://www.adenxsdesign.com/6mam/ http://www.adenxsdesign.com/6mam/ http://www.kykyryky.art/6mam/ http://www.miamiqueensdress.com/6mam/	10.4	M	25	ZeroCERT

First
1
Last
Total : 4cnts