Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
48856	2021-02-15 12:26	wb7eDwv06Jf9EK2.exe 0acb60781639f9796bd6763591e1eac9 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName crashed					11.2	M	22	ZeroCERT

48857	2021-02-15 12:23	wb7eDwv06Jf9EK2.exe 0acb60781639f9796bd6763591e1eac9 suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName DNS crashed					11.6	M		ZeroCERT

48858	2021-02-15 12:23	zShut-194.exe 343e81a203edd016a786df9d1f1b3fa9 VirusTotal Malware AutoRuns Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName RCE		2			6.6	M	45	ZeroCERT

48859	2021-02-15 12:18	MultitimerRT.exe cf35edde149e46ee5dcafa4151dd4a81 VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs		1			3.6	M	35	ZeroCERT

48860	2021-02-15 12:18	setup.exe 57664817e1ce6474c6fb8201675ac09e VirusTotal Malware malicious URLs anti-virtualization		1			2.8	M	58	ZeroCERT

48861	2021-02-15 11:38	btc.exe abe8943dea79bfecb7728deb44846fe3 VirusTotal Malware AutoRuns MachineGuid Check memory Checks debugger unpack itself malicious URLs Windows					3.6	M	46	ZeroCERT

48862	2021-02-15 11:36	inst.exe a0e44abd155fd1acbbe9c9eda6e0f2fd VirusTotal Malware AutoRuns suspicious privilege unpack itself malicious URLs Windows Advertising DNS crashed		3			7.4	M	51	ZeroCERT

48863	2021-02-14 11:00	scr.dll f1c71bbc5b99ab01a8ec7c63a2e12242 VirusTotal Malware Checks debugger buffers extracted unpack itself DNS		1			3.4		50	ZeroCERT

48864	2021-02-14 10:59	chashepro3.exe c277ca9bda5cde270d97fb1cbe5568d0 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency powershell AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates shortcut Creates executable files ICMP traffic RWX flags setting exploit crash unpack itself Windows utilities Checks Bios Collect installed applications Detects VMWare powershell.exe wrote Check virtual network interfaces suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW VMware anti-virtualization VM Disk Size Check installed browsers check Tofsee Ransomware Windows Exploit Browser ComputerName Firmware DNS Cryptographic key Software crashed	6 Keyword trend analysis	10	2		20.2	M	25	guest

48865	2021-02-14 10:58	DunesMultiMedia.exe 01a6ac7d75910a5511637bb6b0fed9f2 VirusTotal Malware Check memory Checks debugger unpack itself AppData folder AntiVM_Disk VM Disk Size Check DNS					3.2	M	2	guest

48866	2021-02-14 00:35	customer3.exe 002cb30c0eb1af1a1985b47ef93bfe20 Browser Info Stealer VirusTotal Malware PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger WMI Creates executable files exploit crash unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW installed browsers check Windows Exploit Browser ComputerName RCE DNS crashed	4 Keyword trend analysis	5	2		15.0	M	42	ZeroCERT

48867	2021-02-14 00:05	winlog.exe 2f882c56f8a1e3a09bd3e188417128ad Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Check memory Creates executable files unpack itself AppData folder malicious URLs sandbox evasion installed browsers check Browser Email ComputerName Software		1			8.8	M	52	ZeroCERT

48868	2021-02-13 23:53	vbc2.exe e5a4a7b2dc13bc17aa7c2b314acc95e5 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege MachineGuid Check memory Creates executable files unpack itself AppData folder malicious URLs AntiVM_Disk sandbox evasion VM Disk Size Check installed browsers check Windows Browser Email ComputerName DNS Software		1			10.0	M	23	ZeroCERT

48869	2021-02-13 23:52	vbc.exe 584c37ad56ab2066725cf107d580ba89 VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs	1 Keyword trend analysis	2			8.4	M	21	ZeroCERT

48870	2021-02-13 23:49	Up.exe f27752d219af8e14b53b267f16d01d7b unpack itself					1.2	M		ZeroCERT