Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
44266	2020-12-30 11:04	9CZVDH7PG06UA4W.doc cc5c5324c57f5fd3cd45228231e39585 Vulnerability VirusTotal Malware Report Malicious Traffic unpack itself malicious URLs Tofsee DNS	3 Keyword trend analysis	14 Info thexanhmy.com(103.116.105.65) - malware www.adnlight.com(31.24.154.183) - malware www.taylordbackups.com(172.67.134.70) www.shortnr.xyz(205.196.222.8) nicoblogroms.com(104.27.175.230) valenciancountry.com(151.80.40.117) - malware 104.28.18.100 - mailcious 31.24.154.183 - malware 24.164.79.147 - mailcious 151.80.40.117 - malware 104.27.175.230 205.196.222.8 74.58.215.226 - mailcious 103.116.105.65 - mailcious	2		6.2	M	28	ZeroCERT

44267	2020-12-30 11:03	app.exe d611e59ca3210d7bb194bc26a0c5f96e VirusTotal Malware unpack itself malicious URLs					2.8	M	15	ZeroCERT

44268	2020-12-30 11:00	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.0			조광섭

44269	2020-12-30 10:58	4D1HFM8G.doc 22eae038b7e3365e5982a0f64c8a7615 Vulnerability VirusTotal Malware Report Malicious Traffic unpack itself malicious URLs Tofsee DNS	3 Keyword trend analysis	14 Info thexanhmy.com(103.116.105.65) - malware www.adnlight.com(31.24.154.183) - malware www.taylordbackups.com(104.28.18.100) www.shortnr.xyz(205.196.222.8) nicoblogroms.com(104.27.175.230) valenciancountry.com(151.80.40.117) - malware 104.28.18.100 - mailcious 31.24.154.183 - malware 24.164.79.147 - mailcious 151.80.40.117 - malware 104.27.175.230 205.196.222.8 74.58.215.226 - mailcious 103.116.105.65 - mailcious	2		6.4	M	30	ZeroCERT

44270	2020-12-30 10:58	3AiHrbOY.dll 845a69de720db4c2271fd449955bd016 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	2 Keyword trend analysis	2	2		6.4		21	ZeroCERT

44271	2020-12-30 10:43	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.0			조광섭

44272	2020-12-30 10:37	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44273	2020-12-30 10:14	R7.dll 6f6baaa631eeefa34d5239badb2c0d50 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	2 Keyword trend analysis	2	2		6.8	M	18	ZeroCERT

44274	2020-12-30 10:14	TnkthoJMeu.dll ea5a09ad213257d2a1532abffa385d18 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	2 Keyword trend analysis	2	2		6.2	M	18	ZeroCERT

44275	2020-12-30 09:51	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44276	2020-12-30 09:46	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44277	2020-12-30 09:44	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44278	2020-12-30 09:39	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself DNS crashed	1 Keyword trend analysis	1	2		2.2			guest

44279	2020-12-30 09:37	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44280	2020-12-30 09:33	09191NF.doc 04c998ae7de45ea30878d569d8dea6d1 Vulnerability VirusTotal Malware Report Malicious Traffic unpack itself malicious URLs Tofsee DNS		8	2		6.4	M	38	ZeroCERT