Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
44656	2020-12-10 18:51	McgjQSIvvkl7ZY4.exe ab95033133d0e0b8fe294a0fdadfa3b5 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName crashed					12.8	M	47	guest

44657	2020-12-10 18:46	McgjQSIvvkl7ZY4.exe ab95033133d0e0b8fe294a0fdadfa3b5 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName crashed					14.0	M	47	guest

44658	2020-12-10 18:46	keygen.exe 296f45415f8fbf00ec413a5472cb0155 VirusTotal Malware Check memory Checks debugger unpack itself DNS					3.4	M	24	guest

44659	2020-12-10 10:38	karma_koin_codes.exe 82d215a75fb488924bd0b6c9b8eb7c8b VirusTotal Malware AutoRuns suspicious privilege MachineGuid Check memory Checks debugger unpack itself malicious URLs Windows DNS Cryptographic key keylogger					5.4	M	61	guest

44660	2020-12-10 10:37	iencli12.dotm 215d80692babc603e1f71bcc07d37d24 malicious URLs					1.6			guest

44661	2020-12-10 10:32	iencli12.dotm 215d80692babc603e1f71bcc07d37d24 Dridex Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			3		4.8			guest

44662	2020-12-10 10:32	invoice.exe 7a4f03850546bc2eee6e253ceeb203dc Dridex Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit DNS crashed			3		4.4			guest

44663	2020-12-10 10:24	growtopiastaff_setup1.61.exe 7c8b5bf99febe00a006c88fa45758117 VirusTotal Malware suspicious privilege Check memory Checks debugger Creates executable files ICMP traffic unpack itself AppData folder malicious URLs WriteConsoleW DNS DDNS		2	1		7.2	M	56	guest

44664	2020-12-10 10:24	huaa.exe 879951cddad7add207ee8ed634e4247a VirusTotal Malware Check memory RWX flags setting unpack itself DNS					2.4	M	5	guest

44665	2020-12-10 10:10	FidgetSpinnerUltraEdition.exe 93ac2c489792875ef7bf65ec314404da VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious process AppData folder malicious URLs sandbox evasion WriteConsoleW Windows Browser DNS Cryptographic key crashed					14.2	M	24	guest

44666	2020-12-10 10:10	googlechrome_3843.exe c9aba0e418f93cfbe9bd12bb7757df94 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows Browser Email ComputerName Cryptographic key Software crashed keylogger					14.4		22	guest

44667	2020-12-10 09:55	FidgetSpinnerUltraEdition.exe 93ac2c489792875ef7bf65ec314404da VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself suspicious process AppData folder malicious URLs sandbox evasion WriteConsoleW Windows Browser Cryptographic key crashed					14.2	M	24	guest

44668	2020-12-10 09:53	googlechrome_3843.exe c9aba0e418f93cfbe9bd12bb7757df94 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName DNS					10.6		22	guest

44669	2020-12-09 18:25	document.doc b09a15ec3039b2dbf82071b94f0d6c6d VirusTotal Malware Malicious Traffic exploit crash unpack itself malicious URLs Exploit DNS crashed Downloader		1	2		5.2	M	26	ZeroCERT

44670	2020-12-09 18:25	doc.exe 45640906bd1ba4924ca2deb60e6863ef Dridex Malware Code Injection RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit DNS crashed			3		4.2			ZeroCERT