Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
9166	2021-03-10 13:47	7.iostem.exe 1da055b46fb0698f80a4404b3a3a63b3 Dridex TrickBot VirusTotal Malware suspicious privilege Checks debugger buffers extracted unpack itself Check virtual network interfaces suspicious process IP Check Kovter ComputerName DNS	1 Keyword trend analysis	6	3		5.6	M	11	ZeroCERT

9167	2021-03-09 15:27	sinqqhd.exe f60b8a0c8976d51ad5f202431b968920 VirusTotal Malware AutoRuns suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Checks Bios Detects VMWare AppData folder malicious URLs VMware anti-virtualization Tofsee Windows ComputerName DNS crashed	1 Keyword trend analysis	2	1		10.8		50	ZeroCERT

9168	2021-03-09 11:34	13.cry.exe 5af074c9bec5f91119e5deac1964207a Dridex TrickBot VirusTotal Malware PDB suspicious privilege Checks debugger buffers extracted RWX flags setting unpack itself Check virtual network interfaces suspicious process malicious URLs Kovter ComputerName DNS crashed		2	3		6.6	M	6	ZeroCERT

9169	2021-03-09 11:26	resume_89607647.doc 1c15a93806ee6bfa079cb5f92b61ff58 VirusTotal Malware unpack itself malicious URLs Tofsee		2	1		4.8	M	27	ZeroCERT

9170	2021-03-09 10:58	dd.exe 6f1e2cf8513d7f9c4a80cba5567141c0 Browser Info Stealer Malware download FTP Client Info Stealer Azorult VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications Check virtual network interfaces AppData folder malicious URLs sandbox evasion anti-virtualization installed browsers check Tofsee Windows Browser Email ComputerName DNS Software	2 Keyword trend analysis	3	4		16.6	M	16	ZeroCERT

9171	2021-03-08 15:22	index.html d41d8cd98f00b204e9800998ecf8427e Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	2 Keyword trend analysis		2		4.2			guest

9172	2021-03-08 15:20	GeoIP.dat aa73c65c8661963aac79f1f2ae16e910 Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	1 Keyword trend analysis		2		5.8			guest

9173	2021-03-08 15:20	chart.class.php 556b2524384b1b773732cd9648a23b14 Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	2 Keyword trend analysis		2		5.2			guest

9174	2021-03-08 15:18	index.html d41d8cd98f00b204e9800998ecf8427e Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	2 Keyword trend analysis		2		4.8			guest

9175	2021-03-08 15:17	geoip.inc bf1e7e0fd0b9755f974217e69c63a31a Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	2 Keyword trend analysis		2		4.2			guest

9176	2021-03-08 15:15	chart.class.php 556b2524384b1b773732cd9648a23b14 Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed	3 Keyword trend analysis		2		4.8			guest

9177	2021-03-08 15:15	fre.php ea9f466d28c594dc4741469805fd440c Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			2		4.2		1	guest

9178	2021-03-08 11:42	chashepro3.exe c277ca9bda5cde270d97fb1cbe5568d0 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut Creates executable files ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Checks Bios Collect installed applications Detects VMWare powershell.exe wrote Check virtual network interfaces suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW VMware anti-virtualization VM Disk Size Check installed browsers check Tofsee Ransomware Windows Exploit Browser ComputerName Firmware DNS Cryptographic key Software crashed	5 Keyword trend analysis	10	2		21.6	M	48	조광섭

9179	2021-03-08 09:16	Rq9UwX3Sxdm9bAfW.exe 7f8a15aca0965d3ef7f5e36245ee20fa Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Collect installed applications Check virtual network interfaces malicious URLs installed browsers check Tofsee Ransomware Windows Browser ComputerName DNS Cryptographic key Software crashed	3 Keyword trend analysis	6	1		15.2		20	ZeroCERT

9180	2021-03-08 09:12	inst_all.exe 7ae05cc2d2a31d9dfa7edbf6beef674e Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			2		4.8			ZeroCERT

First
Previous
611
612
613
614
615
616
617
618
619
620
Next
Last
Total : 10,230cnts