Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
48286	2024-09-22 18:18	otqp9.exe e6cd9d13873fe412d65b9e6aba45d220 UPX PE File PE32 VirusTotal Malware					1.2	M	50	ZeroCERT

48287	2024-09-22 18:21	73EtsZxIoDetWTu.exe 1046de21cd8e9ff519ce5cb089edd5f5 AgentTesla Generic Malware Malicious Library Antivirus PWS SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut unpack itself suspicious process WriteConsoleW Windows Browser Email ComputerName Cryptographic key Software crashed					12.2	M	46	ZeroCERT

48288	2024-09-22 18:23	psfod.exe 97eb7baa28471ec31e5373fcd7b8c880 RedLine stealer RedlineStealer Malicious Library .NET framework(MSIL) UPX PE File .NET EXE PE32 OS Processor Check Browser Info Stealer RedLine Malware download FTP Client Info Stealer VirusTotal Malware Microsoft suspicious privilege Check memory Checks debugger buffers extracted unpack itself Collect installed applications installed browsers check Stealer Windows Browser ComputerName DNS Cryptographic key Software crashed		1	5 Info ET INFO Microsoft net.tcp Connection Initialization Activity ET MALWARE Redline Stealer TCP CnC Activity ET MALWARE [ANY.RUN] RedLine Stealer/MetaStealer Family Related (MC-NMF Authorization) ET MALWARE Redline Stealer TCP CnC - Id1Response ET MALWARE Redline Stealer/MetaStealer Family Activity (Response)		6.2	M	62	ZeroCERT

48289	2024-09-22 18:25	audiodg.exe d2d166937422f379e6dd15041d83af21 Malicious Library UPX PE File PE32 MZP Format VirusTotal Malware Checks debugger RWX flags setting unpack itself Tofsee Interception crashed		2	3		3.4	M	55	ZeroCERT

First
Previous
3211
3212
3213
3214
3215
3216
3217
3218
3219
3220
Last
Total : 48,289cnts