Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
48931	2021-02-06 22:13	pleskkkk.exe 5b100885c4689277966e7f6205fed891 VirusTotal Malware Buffer PE AutoRuns Code Injection Checks debugger buffers extracted unpack itself malicious URLs Windows DNS					9.6	M	49	ZeroCERT

48932	2021-02-06 22:11	start.vbs 9e3905e054e78547ec4fbbbb73e92b78 VirusTotal Malware WMI malicious URLs ComputerName					2.0		14	ZeroCERT

48933	2021-02-06 22:09	pianificazione.exe 05105036a01bb0f7fff05264d83f244f VirusTotal Malware Buffer PE AutoRuns PDB Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName DNS	1 Keyword trend analysis	2	3		10.2	M	21	ZeroCERT

48934	2021-02-06 22:06	plesk.exe 1c2af9a6792ceb4219d3eb0b1c525381 VirusTotal Malware AutoRuns Check memory Checks debugger unpack itself IP Check Tofsee Windows	1 Keyword trend analysis	4	1		4.0	M	25	ZeroCERT

48935	2021-02-06 22:00	gang.exe 5f2a8fe0c9675f3cad5458dfbac33e34 VirusTotal Malware Buffer PE AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted WMI unpack itself Windows utilities Check virtual network interfaces malicious URLs sandbox evasion WriteConsoleW Windows ComputerName Firmware DNS		1			13.2	M	28	ZeroCERT

48936	2021-02-06 22:00	JGSKDJF.exe 5b100885c4689277966e7f6205fed891 VirusTotal Malware Buffer PE AutoRuns Code Injection Checks debugger buffers extracted unpack itself malicious URLs Windows					9.0	M	49	ZeroCERT

48937	2021-02-06 19:41	disable.vbs 3183ab3e54079f5094f0438ad5d460f6 VirusTotal Malware powershell suspicious privilege Code Injection Check memory Checks debugger heapspray Creates shortcut unpack itself Disables Windows Security suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key					8.2		7	ZeroCERT

48938	2021-02-06 19:41	downloaddocument.doc d3d0fab713c4d62f0c00a790b9b820dc VirusTotal Malware unpack itself malicious URLs DNS					2.4	M	12	ZeroCERT

48939	2021-02-06 18:24	crytp.exe 01c615395a542dead29b178a9bc00894 VirusTotal Malware Buffer PE AutoRuns Code Injection Checks debugger buffers extracted unpack itself malicious URLs Windows DNS					9.4	M	31	ZeroCERT

48940	2021-02-06 18:23	cmon.bat c0e97fdb841fc8815e1b7cef2bb3f5fb powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key					4.6			ZeroCERT

48941	2021-02-06 18:21	crytp.exe 01c615395a542dead29b178a9bc00894 VirusTotal Malware Buffer PE AutoRuns Code Injection Checks debugger buffers extracted unpack itself malicious URLs Windows					8.8	M	31	ZeroCERT

48942	2021-02-06 18:13	cmon.bat c0e97fdb841fc8815e1b7cef2bb3f5fb powershell suspicious privilege Check memory Checks debugger Creates shortcut unpack itself powershell.exe wrote suspicious process malicious URLs WriteConsoleW Windows ComputerName DNS Cryptographic key					5.2			ZeroCERT

48943	2021-02-06 18:12	bigRANSOM.exe ab5e379db162ff52ec1c769f69276fd5 VirusTotal Malware Buffer PE Code Injection Checks debugger buffers extracted unpack itself malicious URLs					7.0	M	38	ZeroCERT

48944	2021-02-06 18:10	001_01.ps1 7c22563e145f88519cfbfd7f26d1e3ad VirusTotal Malware unpack itself malicious URLs					1.8		17	ZeroCERT

48945	2021-02-06 17:48	001_01.ps1 7c22563e145f88519cfbfd7f26d1e3ad VirusTotal Malware malicious URLs crashed					1.6		17	ZeroCERT