Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
3016	2020-11-14 15:45	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3017	2020-11-14 15:46	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3018	2020-11-14 15:48	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3019	2020-11-14 15:51	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3020	2020-11-14 15:52	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3021	2020-11-14 15:54	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3022	2020-11-14 15:54	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3023	2020-11-14 15:58	http://magicview.ga/webxpo/gat... Dridex VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		3	6 Info ET INFO DNS Query for Suspicious .ga Domain ET HUNTING Suspicious GET To gate.php with no Referer ET INFO TLS Handshake Failure ET JA3 Hash - Possible Malware - Unknown traffic associated with Dridex SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) SURICATA HTTP unable to match response to request		4.6	M		admin

3024	2020-11-14 16:20	http://magicview.ga/webxpo/gat... Dridex VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		3	6 Info ET INFO DNS Query for Suspicious .ga Domain ET HUNTING Suspicious GET To gate.php with no Referer SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) ET INFO TLS Handshake Failure ET JA3 Hash - Possible Malware - Unknown traffic associated with Dridex SURICATA HTTP unable to match response to request		4.6	M		admin

3025	2020-11-14 16:24	http://magicview.ga/webxpo/gat... Dridex VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		3	6 Info ET INFO TLS Handshake Failure ET INFO DNS Query for Suspicious .ga Domain ET JA3 Hash - Possible Malware - Unknown traffic associated with Dridex ET HUNTING Suspicious GET To gate.php with no Referer SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) SURICATA HTTP unable to match response to request		4.6	M		admin

3026	2020-11-14 16:29	http://magicview.ga/webxpo/gat... Dridex VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		3	6 Info ET INFO DNS Query for Suspicious .ga Domain SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) ET HUNTING Suspicious GET To gate.php with no Referer ET INFO TLS Handshake Failure ET JA3 Hash - Possible Malware - Unknown traffic associated with Dridex SURICATA HTTP unable to match response to request		4.6	M		admin

3027	2020-11-14 16:34	http://magicview.ga/webxpo/gat... Dridex VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed		3	6 Info ET INFO DNS Query for Suspicious .ga Domain ET INFO TLS Handshake Failure ET HUNTING Suspicious GET To gate.php with no Referer ET JA3 Hash - Possible Malware - Unknown traffic associated with Dridex SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) SURICATA HTTP unable to match response to request		4.6	M		admin

3028	2020-11-14 16:39	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3029	2020-11-14 16:46	5.exe f139bcd08ad8da406f7dd25411d1c9b3 VirusTotal Malware unpack itself malicious URLs					2.8	M	60	admin

3030	2020-11-14 16:57	mat.exe e06713074df9b1a23469267f1ac54e17 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Check memory Checks debugger unpack itself Windows utilities malicious URLs Ransomware Windows Browser Tor Email ComputerName Cryptographic key Software crashed					10.8	M	25	admin

First
Previous
201
202
203
204
205
206
207
208
209
210
Next
Last
Total : 48,320cnts