Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
44281	2020-12-30 09:33	ERDXZJAK.doc 04c998ae7de45ea30878d569d8dea6d1 Vulnerability VirusTotal Malware Report Malicious Traffic unpack itself malicious URLs Tofsee DNS		8	2		6.4	M	38	ZeroCERT

44282	2020-12-30 09:28	x9eS7d.dll b15dfdca9f3d7c14563949783fa4daf5 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	1 Keyword trend analysis	3		1	8.0	M	7	ZeroCERT

44283	2020-12-30 09:28	ZohNSVMSsLytj.dll aab92f304b127261a0a7f917ab4276e5 VirusTotal Malware Malicious Traffic Checks debugger RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key	1 Keyword trend analysis	3		1	8.0	M	33	ZeroCERT

44284	2020-12-30 09:23	YZ3CK00V3KVPD.doc a31982ecb88498bb30b0c1a289d82c6b Vulnerability VirusTotal Malware Report Malicious Traffic ICMP traffic unpack itself malicious URLs Tofsee DNS		8	2		7.2	M	39	ZeroCERT

44285	2020-12-30 09:21	tvstream.exe d4e8d1e4ba215265ca1fdd24c9ed3f7f VirusTotal Malware Remote Code Execution					2.2	M	53	ZeroCERT

44286	2020-12-30 09:19	S9LhKc0v.dll c2ddb410e5e39387f1961582486144b7 VirusTotal Malware Report Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName DNS Cryptographic key		3	2		6.2	M	6	guest

44287	2020-12-29 18:25	tufile.exe 1f42a1843ea522e84229ec95fe12f0b0 VirusTotal Malware unpack itself					3.0		21	ZeroCERT

44288	2020-12-29 18:23	S9LhKc0v.dll c2ddb410e5e39387f1961582486144b7 VirusTotal Malware unpack itself					1.2		6	ZeroCERT

44289	2020-12-29 18:21	regasm.exe 0d2bf4e66cc8a76ee90cfc9023d0b56a VirusTotal Malware suspicious privilege Check memory Checks debugger unpack itself					2.6	M	22	ZeroCERT

44290	2020-12-29 18:18	Possies.exe 875c308ab4aefeea743c5fbfd3f47124 Browser Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process malicious URLs suspicious TLD installed browsers check Tofsee Ransomware Windows Browser ComputerName DNS Cryptographic key crashed	3 Keyword trend analysis	9	1		15.4	M	47	ZeroCERT

44291	2020-12-29 18:17	nefile.exe 57a9c6d1f80eec2792d26d5903a9228b VirusTotal Malware unpack itself					3.2	M	48	ZeroCERT

44292	2020-12-29 18:00	Q76T.dll bf6a524f5543cde20b6fb911edb2a467 Check memory unpack itself crashed					1.6			guest

44293	2020-12-29 17:59	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44294	2020-12-29 17:57	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest

44295	2020-12-29 17:54	Q76T.dll bf6a524f5543cde20b6fb911edb2a467					0.4			guest