| No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 49426 | 2024-11-15 13:50 |
 op.exe f5d20b351d56605bbb51befee989fa6eGen1 North Korea NSIS Generic Malware Malicious Library Malicious Packer UPX Antivirus AntiDebug AntiVM PE32 PE File DLL .NET DLL OS Processor Check icon .NET EXE ftp PNG Format VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger WMI Creates executable files unpack itself AppData folder sandbox evasion installed browsers check Ransomware Windows Browser ComputerName Cryptographic key |
2 | 9.0 | 28 | ZeroCERT | ||||||||||||||||||
|
|
||||||||||||||||||||||||
| 49427 | 2024-11-15 13:51 |
 wwbizsrvs.exe 2912cd42249241d0e1ef69bfe6513f49Generic Malware Malicious Library UPX ftp PE32 PE File OS Processor Check VirusTotal Malware PDB Check memory sandbox evasion ComputerName Remote Code Execution |
2.8 | 15 | ZeroCERT | |||||||||||||||||||
|
|
||||||||||||||||||||||||