Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
3256	2020-11-24 07:51	https://thebabsite.com/app/app... 5fc0b6da6d40f975a057a5cb9fa33bf5 Dridex VirusTotal Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder malicious URLs Tofsee Windows Exploit DNS crashed	1 Keyword trend analysis	2	3		5.4		23	ZeroCERT

3257	2020-11-24 07:59	https://d3727mhevtk2n4.cloudfr... 66bb8e74def01a190673f6ea71c102ca Code Injection unpack itself Windows utilities Tofsee Windows	1 Keyword trend analysis	2	1		2.2			ZeroCERT

3258	2020-11-24 08:03	https://d3727mhevtk2n4.cloudfr... 66bb8e74def01a190673f6ea71c102ca Code Injection unpack itself Windows utilities Tofsee Windows	1 Keyword trend analysis	2	1		2.2			ZeroCERT

3259	2020-11-24 09:26	RL Simple Replay Editor.exe 834d1178ddb53a4d76ad9ef05ec67f20 VirusTotal Malware Checks debugger unpack itself crashed					1.6		3	ZeroCERT

3260	2020-11-24 10:00	app.exe 9664af963ef2d8889eeadd49c4b097e7 VirusTotal Malware unpack itself malicious URLs					2.4		21	ZeroCERT

3261	2020-11-24 10:02	ewa.exe 80c6700fc3546cb510e5cd7497d13d7a VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName DNS crashed					15.2	M	34	ZeroCERT

3262	2020-11-24 10:09	ewa.exe 80c6700fc3546cb510e5cd7497d13d7a VirusTotal Malware Check memory Checks debugger unpack itself					2.2	M	34	ZeroCERT

3263	2020-11-24 10:10	in.exe a1fe6cc921fb6ac3c10d11c4ed1a0b01 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs DNS					8.2	M	24	ZeroCERT

3264	2020-11-24 10:33	li.exe 59dbb16e78443176b4411b03e2e4598a Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted ICMP traffic unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	1 Keyword trend analysis	4	5		14.8	M	37	ZeroCERT

3265	2020-11-24 10:33	Ohms.exe 3070eba41971269de72494cb416f60cf VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName DNS crashed					14.8	M	19	ZeroCERT

3266	2020-11-24 10:42	presh.doc 04fb044011085bc906ede48c396020c5 VirusTotal Malware Malicious Traffic exploit crash unpack itself malicious URLs Windows Exploit DNS crashed	2 Keyword trend analysis	5	5 Info ET INFO Executable Download from dotted-quad Host ET CURRENT_EVENTS Likely Evil EXE download from dotted Quad by MSXMLHTTP M1 ET POLICY PE EXE or DLL Windows file download HTTP ET CURRENT_EVENTS Likely Evil EXE download from dotted Quad by MSXMLHTTP M2 ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response		5.2	M	25	ZeroCERT

3267	2020-11-24 11:20	presh.exe 174928672b2339c57a6882125957e672 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs					8.0	M	45	ZeroCERT

3268	2020-11-24 11:20	Spoof_123.exe 48075a122eb84fc077fb80e59d3834ed VirusTotal Malware Check memory Checks debugger unpack itself ComputerName DNS					3.2	M	51	ZeroCERT

3269	2020-11-24 11:23	presh.exe 174928672b2339c57a6882125957e672 VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities malicious URLs Windows	2 Keyword trend analysis	4			10.0	M	45	ZeroCERT

3270	2020-11-24 11:28	svch.exe 2aa72d8ddee42fde91878cffe0ac139e Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Ransomware Windows Browser Tor Email ComputerName Cryptographic key Software crashed	2 Keyword trend analysis	4	1		10.0	M	49	ZeroCERT

First
Previous
211
212
213
214
215
216
217
218
219
220
Next
Last
Total : 48,320cnts