Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
47491	2020-07-15 10:23	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware					0.4

47492	2020-07-15 10:22	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware					0.4

47493	2020-07-15 10:04	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit DNS crashed	4 Keyword trend analysis	3			4.2	M

47494	2020-07-15 10:01	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder Windows Exploit DNS crashed	4 Keyword trend analysis Info http://cert.int-x3.letsencrypt.org/ https://download.nullsoft.com/winamp/client/winamp58_3660_beta_full_en-us.exe https://download.nullsoft.com/winamp/misc/winamp58_3660_beta_full_en-us.exe https://clients2.google.com/service/check2?crx3=true&appid=%7B430FD4D0-B729-4F61-AA34-91526481799D%7D&appversion=1.3.35.452&applang=&machine=1&version=1.3.35.452&userid=&osversion=6.1&servicepack=Service%20Pack%201	3			4.6	M

47495	2020-07-15 09:51	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware					0.4

47496	2020-07-14 18:03	http://198.23.213.30/word.doc b64dfaec711043dee37fc7d4f39f9a33 VirusTotal Malware Code Injection Malicious Traffic unpack itself Windows utilities Windows DNS	4 Keyword trend analysis	1			4.0	M	26

47497	2020-07-14 18:03	http://workfineanotherrainbowl... 421b08e81a183c1d7337128cba971fa2 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger Creates executable files exploit crash unpack itself Windows utilities suspicious process AppData folder malicious URLs Windows Exploit DNS DDNS crashed	2 Keyword trend analysis Info http://workfineanotherrainbowlomoyentsndybvn20.duckdns.org/worksdoc/svchost.exe https://clients2.google.com/service/check2?crx3=true&appid=%7B430FD4D0-B729-4F61-AA34-91526481799D%7D&appversion=1.3.35.452&applang=&machine=1&version=1.3.35.452&userid=&osversion=6.1&servicepack=Service%20Pack%201	4			7.6	M	19

47498	2020-07-14 17:56	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder Windows Exploit crashed	3 Keyword trend analysis	4			4.0	M

47499	2020-07-14 14:22	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit crashed	3 Keyword trend analysis	4			3.6	M

47500	2020-07-14 14:16	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit crashed	3 Keyword trend analysis	4			3.6	M

47501	2020-07-14 14:10	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder malicious URLs Windows Exploit crashed	3 Keyword trend analysis	5			4.4	M

47502	2020-07-14 13:49	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder malicious URLs Windows Exploit crashed	3 Keyword trend analysis	5			4.4	M

47503	2020-07-14 13:45	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder malicious URLs Windows Exploit crashed	3 Keyword trend analysis	5			4.8	M

47504	2020-07-14 13:41	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder malicious URLs Windows Exploit crashed	3 Keyword trend analysis	5			4.4	M

47505	2020-07-14 13:17	tf.exe 95538de401e23648cc5488d9e35a0250 VirusTotal Malware AutoRuns buffers extracted WMI Creates executable files ICMP traffic Windows utilities AppData folder malicious URLs WriteConsoleW Windows ComputerName	4 Keyword trend analysis Info http://downapp.baidu.com/appsearch/AndroidPhone/1.0.65.172/1/1012271b/20171027150542/appsearch_AndroidPhone_1-0-65-172_1012271b.apk?responseContentDisposition=attachment%3Bfilename%3D%22appsearch_AndroidPhone_v8.0.3%281.0.65.172%29_1012271b.apk%22&responseContentType=application%2Fvnd.android.package-archive&request_id=1516457256_8032127161&type=dynamic http://downapp.baidu.com/ https://www.ipip.net/ https://en.ipip.net/	12			8.2	M	62