Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
3946	2020-12-24 13:44	oscvjkfd.exe 0c0166dba45d03d2b7907707fa7dcdaa Browser Info Stealer Malware download Vidar VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files unpack itself Windows utilities Collect installed applications suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check OskiStealer Stealer Windows Browser Email ComputerName DNS	8 Keyword trend analysis	2	2		19.2	M	40	ZeroCERT

3947	2020-12-24 13:47	ox9.png.exe 68cf96f4bc91628e22e1526d9728990b VirusTotal Malware unpack itself Windows crashed					2.2	M	28	ZeroCERT

3948	2020-12-24 13:49	rc.exe a93af1e2096c6baa9909f2aa868666e5 Emotet VirusTotal Malware Buffer PE AutoRuns Code Injection Malicious Traffic buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities AppData folder malicious URLs Tofsee Interception Windows DNS		7	1		13.4	M	29	ZeroCERT

3949	2020-12-24 16:43	servis.exe a20399351b23e0bf909677d85c1025cb VirusTotal Malware Buffer PE Check memory buffers extracted Creates executable files unpack itself AppData folder malicious URLs					4.8	M	23	ZeroCERT

3950	2020-12-24 16:43	S143.txt.exe b766cc43d649d30e9f27aff8f7ee7de0 VirusTotal Malware Check memory malicious URLs sandbox evasion DNS		2			3.4	M	54	ZeroCERT

3951	2020-12-24 18:14	V47gHzW5ezZ5deHbV1.dll 105017c3b47adeaba66786af6c730ade VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key		1			7.0	M	22	ZeroCERT

3952	2020-12-24 18:16	123.exe 2c8316535580b835c1501608a0c54d27 VirusTotal Malware unpack itself Remote Code Execution					2.8	M	31	ZeroCERT

3953	2020-12-24 18:16	win7.exe b0da3557135a0589c4010cd5771879e6 VirusTotal Malware PDB MachineGuid Code Injection unpack itself Tofsee DNS crashed	1 Keyword trend analysis	2	3		5.6	M	40	ZeroCERT

3954	2020-12-24 18:20	ju.exe 2f19c703ed0f3ba9e8cc73af73d58b7d VirusTotal Malware PDB					1.8	M	50	ZeroCERT

3955	2020-12-24 18:22	drfone.exe 545f38fbb74881142712052a5b6eabce VirusTotal Malware unpack itself malicious URLs ComputerName DNS					2.8		12	ZeroCERT

3956	2020-12-24 18:22	NBIANZ3HYjHcNID.php.exe d8dec43ad8361cbe8f7611b9e54e2d02 unpack itself Windows crashed					1.8			ZeroCERT

3957	2020-12-24 18:24	s306.exe aba08c7aca9c6e3d8d5bb0f14a8e1fb4 Malware download VirusTotal Malware AutoRuns Creates executable files RWX flags setting malicious URLs Windows Remote Code Execution	1 Keyword trend analysis	3	3		4.6	M	59	ZeroCERT

3958	2020-12-24 18:26	NBIANZ3HYjHcNID.php.exe d8dec43ad8361cbe8f7611b9e54e2d02 unpack itself Windows crashed					1.8			ZeroCERT

3959	2020-12-25 09:55	Z143.exe 5e9d5e1b456d7a27a41431f95cd057b3 Malware download VirusTotal Malware AutoRuns Creates executable files RWX flags setting Windows utilities malicious URLs Windows Remote Code Execution		3	3		5.0	M	50	ZeroCERT

3960	2020-12-25 09:58	https://bitbucket.org/seveca-e... a84b3b7ebad4e58b005fb502e2765e04 Dridex VirusTotal Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed		2	3		4.2			ZeroCERT

First
Previous
261
262
263
264
265
266
267
268
269
270
Next
Last
Total : 48,352cnts