Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
3646	2020-12-09 18:09	warCS.gif.exe e5b54ad94c5af53fe63de33113e8ebc3 Emotet VirusTotal Malware Buffer PE Code Injection buffers extracted unpack itself malicious URLs DNS crashed					9.4	M	65	ZeroCERT

3647	2020-12-09 18:12	온라인+학술대회+한시적+지원+관련+Q&A.hwp... 257a81471a001af1fa0d82069c92993c VirusTotal Malware Checks debugger Creates shortcut Creates executable files unpack itself malicious URLs					3.0	M	28	r0d

3648	2020-12-09 18:16	온라인+학술대회+한시적+지원+관련+Q&A.hwp... 257a81471a001af1fa0d82069c92993c VirusTotal Malware Checks debugger Creates shortcut Creates executable files unpack itself malicious URLs					3.0	M	28	r0d

3649	2020-12-09 18:17	Check.vbs 64da134f75d0e8d2165107afbc8a1ee2 Browser Info Stealer Email Client Info Stealer Malware powershell Buffer PE suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI heapspray ICMP traffic unpack itself Check virtual network interfaces suspicious process malicious URLs AntiVM_Disk sandbox evasion WriteConsoleW VM Disk Size Check installed browsers check Windows Java Browser Email ComputerName DNS Cryptographic key DDNS keylogger		6	3		19.6	M		ZeroCERT

3650	2020-12-09 18:18	9872345987345764.exe 0b550abc587600c9a9d1dd5e23a089f9 VirusTotal Malware suspicious privilege Check memory buffers extracted Creates executable files unpack itself AppData folder malicious URLs IP Check Ransomware Windows Advertising Google DNS keylogger	1 Keyword trend analysis	6	1		9.8	M	18	ZeroCERT

3651	2020-12-09 18:25	doc.exe 45640906bd1ba4924ca2deb60e6863ef Dridex Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			3		4.2			ZeroCERT

3652	2020-12-09 18:25	document.doc b09a15ec3039b2dbf82071b94f0d6c6d VirusTotal Malware Malicious Traffic exploit crash unpack itself malicious URLs Exploit DNS crashed Downloader		1	2		5.2	M	26	ZeroCERT

3653	2020-12-10 09:53	googlechrome_3843.exe c9aba0e418f93cfbe9bd12bb7757df94 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName DNS					10.6		22	guest

3654	2020-12-10 09:55	FidgetSpinnerUltraEdition.exe 93ac2c489792875ef7bf65ec314404da VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious process AppData folder malicious URLs sandbox evasion WriteConsoleW Windows Browser Cryptographic key crashed					14.2	M	24	guest

3655	2020-12-10 10:10	googlechrome_3843.exe c9aba0e418f93cfbe9bd12bb7757df94 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows Browser Email ComputerName Cryptographic key Software crashed keylogger					14.4		22	guest

3656	2020-12-10 10:10	FidgetSpinnerUltraEdition.exe 93ac2c489792875ef7bf65ec314404da VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious process AppData folder malicious URLs sandbox evasion WriteConsoleW Windows Browser DNS Cryptographic key crashed					14.2	M	24	guest

3657	2020-12-10 10:24	growtopiastaff_setup1.61.exe 7c8b5bf99febe00a006c88fa45758117 VirusTotal Malware suspicious privilege Check memory Checks debugger Creates executable files ICMP traffic unpack itself AppData folder malicious URLs WriteConsoleW DNS DDNS		2	1		7.2	M	56	guest

3658	2020-12-10 10:24	huaa.exe 879951cddad7add207ee8ed634e4247a VirusTotal Malware Check memory RWX flags setting unpack itself DNS					2.4	M	5	guest

3659	2020-12-10 10:32	invoice.exe 7a4f03850546bc2eee6e253ceeb203dc Dridex Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed			3		4.4			guest

3660	2020-12-10 10:32	iencli12.dotm 215d80692babc603e1f71bcc07d37d24 Dridex Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			3		4.8			guest

First
Previous
241
242
243
244
245
246
247
248
249
250
Next
Last
Total : 48,320cnts