Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
45346	2020-11-13 12:23	beacon.exe 860cdd118f68793a680ad4d22c43619a VirusTotal Malware Code Injection buffers extracted RWX flags setting Windows utilities suspicious process AppData folder malicious URLs Tofsee Windows ComputerName		6	1		7.2	M	45	SFPark

45347	2020-11-13 11:47	BBST10112020.xls df100c2a6d13f5d413eed98345681491 VirusTotal Malware Malicious Traffic Creates executable files unpack itself malicious URLs Windows ComputerName DNS		1	6 Info ET INFO Executable Download from dotted-quad Host ET CURRENT_EVENTS Likely Evil EXE download from dotted Quad by MSXMLHTTP M1 ET INFO Packed Executable Download ET POLICY PE EXE or DLL Windows file download HTTP ET CURRENT_EVENTS Likely Evil EXE download from dotted Quad by MSXMLHTTP M2 ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response		7.4	M	22	SFPark

45348	2020-11-13 11:42	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		2			10.0		36	admin

45349	2020-11-13 11:41	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45350	2020-11-13 11:38	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45351	2020-11-13 11:37	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45352	2020-11-13 11:36	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		2			10.0		36	admin

45353	2020-11-13 11:35	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45354	2020-11-13 11:31	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		2			10.0		36	admin

45355	2020-11-13 11:29	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45356	2020-11-13 11:27	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		2			10.0		36	admin

45357	2020-11-13 11:27	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45358	2020-11-13 11:05	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45359	2020-11-13 11:02	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		1			10.0		36	admin

45360	2020-11-13 11:01	b.exe 268f6a197a208cca3d28c81059a0267d VirusTotal Malware Code Injection Checks debugger buffers extracted RWX flags setting unpack itself malicious URLs ComputerName Remote Code Execution DNS		2			10.0		36	admin