Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
44251	2020-12-30 14:45	Request For Quotation.cab e393763fdf2f153f11b8913b9770a1b1 VirusTotal Malware					0.4		9	guest

44252	2020-12-30 14:44	Request For Quotation.cab e393763fdf2f153f11b8913b9770a1b1 VirusTotal Malware					0.8		9	guest

44253	2020-12-30 14:43	Request For Quotation.cab e393763fdf2f153f11b8913b9770a1b1 VirusTotal Malware					0.8		9	guest

44254	2020-12-30 14:39	Request For Quotation.exe 37f5182dccf4e6efa907b2f8670b9194 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key					8.6		15	guest

44255	2020-12-30 14:30	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44256	2020-12-30 14:20	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44257	2020-12-30 14:18	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44258	2020-12-30 14:16	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44259	2020-12-30 14:15	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44260	2020-12-30 14:14	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44261	2020-12-30 14:12	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44262	2020-12-30 13:55	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44263	2020-12-30 13:22	PTVqbey4bnBm.dll db3572cb1e8682908b363983da4c9fb7 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	2 Keyword trend analysis	2	2		6.2	M	18	r0d

44264	2020-12-30 11:09	binds.exe ab8dbb870ece14e19317f4bf3cbf61ef VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities AppData folder malicious URLs Windows Cryptographic key	7 Keyword trend analysis Info http://www.gallerybrows.com/bw82/?ibiptfYx=qtQC6ueJ86PwG4TieB2W7XMv4DHg8NEty82ZTq9kztdMxA3u54TY4SZwocJg2MQZRmJiwzrm&TZ=ytpluRw http://www.rizrvd.com/bw82/?ibiptfYx=AJ+QNFfrOFbXfaBH3oQHABBFVni950JEMBOKAlzmtW9JOrHkbqbPArp20lyvTn0sGIZMgptI&TZ=ytpluRw - rule_id: 170 http://www.rizrvd.com/bw82/?ibiptfYx=AJ+QNFfrOFbXfaBH3oQHABBFVni950JEMBOKAlzmtW9JOrHkbqbPArp20lyvTn0sGIZMgptI&TZ=ytpluRw http://www.lakegastonautoparts.com/bw82/?ibiptfYx=juBLB0WqzeXPFoNXoiaKUMHcPI3xC2bTDg9jeDe0t8cj29/tW+mLTBuOwrYIlHJeRY+fWQQT&TZ=ytpluRw - rule_id: 175 http://www.gallerybrows.com/bw82/ http://www.rizrvd.com/bw82/ - rule_id: 170 http://www.lakegastonautoparts.com/bw82/ - rule_id: 175	7		4	10.8	M	25	ZeroCERT

44265	2020-12-30 11:09	PTVqbey4bnBm.dll db3572cb1e8682908b363983da4c9fb7 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	2 Keyword trend analysis	2	2		6.8	M	18	ZeroCERT