Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
48631	2020-07-14 09:27	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files unpack itself Windows utilities Windows	2 Keyword trend analysis	2			3.0	M

48632	2020-07-14 09:23	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit crashed	3 Keyword trend analysis	4			3.6	M

48633	2020-07-13 17:49	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit crashed	3 Keyword trend analysis	4			3.6	M

48634	2020-07-13 17:44	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit crashed	3 Keyword trend analysis	4			4.6	M

48635	2020-07-13 17:41	https://download.nullsoft.com/... 3017f921a6c42a267842cc8bae9384c1 VirusTotal Malware Code Injection Creates executable files unpack itself Windows utilities Windows	2 Keyword trend analysis	2			3.0	M

48636	2020-07-13 14:53	http://111.90.148.23/100720.do... 7677a0501aa639d98781a5eb58a91324 VirusTotal Malware Code Injection Malicious Traffic unpack itself Windows utilities Windows DNS	3 Keyword trend analysis Info http://111.90.148.23/100720.doc http://111.90.148.23/ http://111.90.148.23/ http://111.90.148.23/100720.doc http://111.90.148.23/ https://clients2.google.com/service/check2?crx3=true&appid=%7B430FD4D0-B729-4F61-AA34-91526481799D%7D&appversion=1.3.35.452&applang=&machine=1&version=1.3.35.452&userid=&osversion=6.1&servicepack=Service%20Pack%201	3			4.0	M	16

48637	2020-07-11 14:17	https://handrug.com.py/baterfl... 455a8c68cddabdea92791e22fa7c5a3f VirusTotal Malware Code Injection unpack itself Windows utilities malicious URLs Windows		2			2.6

48638	2020-07-11 00:41	http://getgoodvideo.com/videop... 68f2c5cd12a9b826c26b00692c669beb VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder Windows Exploit crashed	2 Keyword trend analysis	4			4.0	M	31

48639	2020-07-11 00:40	http://memishooee.pw/down/id20... 8490df97262455335c06e8d139449080 Browser Info Stealer VirusTotal Malware Code Injection Malicious Traffic heapspray Creates executable files RWX flags setting exploit crash unpack itself Windows utilities AppData folder malicious URLs suspicious TLD Windows Exploit Browser crashed	3 Keyword trend analysis Info http://memishooee.pw/down/id20.exe http://freekzvideo.cloud/business/receive https://clients2.google.com/service/check2?crx3=true&appid=%7B430FD4D0-B729-4F61-AA34-91526481799D%7D&appversion=1.3.35.452&applang=&machine=1&version=1.3.35.452&userid=&osversion=6.1&servicepack=Service%20Pack%201	6			9.2	M	50

48640	2020-07-11 00:35	http://smiothmadara.ug/os2.exe 55a24afe65e5d8459cc31973277d1909 Browser Info Stealer VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files ICMP traffic exploit crash unpack itself Windows utilities Collect installed applications suspicious process AppData folder malicious URLs WriteConsoleW anti-virtualization human activity check installed browsers check Windows Exploit Browser Email ComputerName crashed	10 Keyword trend analysis	3			18.4	M	16

48641	2020-07-11 00:33	http://dennissmith.ug/ds2.exe b11e1b59c55fe58bee59b66a38bc962c VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files exploit crash unpack itself Windows utilities Disables Windows Security suspicious process AppData folder malicious URLs Windows Exploit ComputerName Cryptographic key crashed	2 Keyword trend analysis	4			13.4	M	21

48642	2020-07-11 00:29	http://19workfineanotherrainbo... 9d4c81c16699da96cacc73cabaaf9fb4 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files exploit crash unpack itself Windows utilities suspicious process malicious URLs Windows Exploit DNS DDNS crashed	2 Keyword trend analysis Info http://19workfineanotherrainbowlomoyentwsdywrk.duckdns.org/worksdoc/svchost.exe https://clients2.google.com/service/check2?crx3=true&appid=%7B430FD4D0-B729-4F61-AA34-91526481799D%7D&appversion=1.3.35.452&applang=&machine=1&version=1.3.35.452&userid=&osversion=6.1&servicepack=Service%20Pack%201	4			10.4	M

48643	2020-07-11 00:13	http://veyron.ir/aguerox/aguer... cd8d396fefb42859406abdbc0462f6b4 VirusTotal Malware suspicious privilege Code Injection Checks debugger buffers extracted Creates executable files exploit crash unpack itself Windows utilities malicious URLs Windows Exploit crashed	2 Keyword trend analysis	4			9.6	M

48644	2020-07-11 00:02	cykk.exe dcbed5a043d3eca73e3451f66718882f VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs	1 Keyword trend analysis	2			8.0	M	22

48645	2020-07-10 23:16	http://192.3.140.203/OpyRmPCoN... 04686fa9ba01f92a3da7275b7482ce9c VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files RWX flags setting exploit crash unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Windows Exploit ComputerName DNS crashed	2 Keyword trend analysis	3			15.0	M	14