Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
50146	2020-11-21 18:07	Ubnccbruoun7.exe 9635d5d0882e7ecd9234af3bfd2efa89 VirusTotal Malware AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows DNS Cryptographic key		1			10.4	M	50	ZeroCERT

50147	2020-11-21 18:02	topo.exe b0142b51242c66a94498ff06772f0f72 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Ransomware Windows Browser Tor Email ComputerName DNS Cryptographic key Software crashed	2 Keyword trend analysis	4	1		12.0	M	51	ZeroCERT

50148	2020-11-21 18:01	tl2gnGyMz6eLhZG.exe a69d92ca36316018b8f7b2daf8de9980 VirusTotal Malware suspicious privilege Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName crashed					8.8	M	22	ZeroCERT

50149	2020-11-21 17:54	SK-01068.exe 57cdf27894584678159ff08d2d19061c VirusTotal Malware Buffer PE AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs Ransomware Windows Tor ComputerName Cryptographic key crashed					14.8	M	52	ZeroCERT

50150	2020-11-21 17:53	stub.exe 0e246d7813b9ea04cac28802062a3ddd Browser Info Stealer Malware download VirusTotal Malware Malicious Traffic Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs IP Check Stealer Browser	2 Keyword trend analysis	4	2		5.2	M	50	ZeroCERT

50151	2020-11-21 17:41	rc.exe 1a328017740757e16cb7ac98df27e043 Emotet VirusTotal Malware Buffer PE AutoRuns Code Injection Malicious Traffic buffers extracted Creates executable files RWX flags setting unpack itself Windows utilities suspicious process AppData folder malicious URLs Tofsee Interception Windows DNS	1 Keyword trend analysis	9	1		16.6	M	47	ZeroCERT

50152	2020-11-21 17:40	QulLipWrkCCy1E8.exe f04af9c18007f88f35490215ae8198a7 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege MachineGuid Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW installed browsers check Windows Browser Email ComputerName DNS Software		1			17.2	M	23	ZeroCERT

50153	2020-11-21 17:34	ozchgftrq.exe d7a52acd99d213cdeb1f91ed193868d0 Browser Info Stealer Malware download Vidar VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted WMI Creates executable files ICMP traffic unpack itself Windows utilities Collect installed applications suspicious process AppData folder malicious URLs AntiVM_Disk WriteConsoleW anti-virtualization VM Disk Size Check installed browsers check OskiStealer Stealer Windows Browser Email ComputerName	8 Keyword trend analysis	2	4		18.8	M	50	ZeroCERT

50154	2020-11-21 17:34	POT.exe 51665d04b5fc3289e64ebb819e29e798 Check memory Checks debugger buffers extracted Creates executable files unpack itself AppData folder malicious URLs DNS crashed					3.8	M		ZeroCERT

50155	2020-11-21 17:20	nnab.exe f87c759372219f7aea1b53289f8f4ad8 VirusTotal Malware Code Injection buffers extracted unpack itself sandbox evasion DNS crashed					6.2	M	28	ZeroCERT

50156	2020-11-21 17:20	ogo.exe 561e3075e7562f8e42a9f4e18e2c7635 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Ransomware Windows Browser Tor Email ComputerName Cryptographic key Software crashed keylogger	2 Keyword trend analysis	4	1		13.6	M	44	ZeroCERT

50157	2020-11-21 17:16	nnab.exe f87c759372219f7aea1b53289f8f4ad8 VirusTotal Malware Code Injection buffers extracted unpack itself sandbox evasion crashed					5.6	M	28	ZeroCERT

50158	2020-11-21 17:14	ds1.exe db0b8c1100f32aafe63cb885a30cc7e0 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself malicious URLs DNS crashed					8.6	M	17	ZeroCERT

50159	2020-11-21 17:14	fank.exe fe2b5814b851201115c8964989899a4e Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself Check virtual network interfaces malicious URLs IP Check Tofsee Ransomware Windows Browser Tor Email ComputerName Cryptographic key Software crashed	2 Keyword trend analysis	4	1		11.4	M	51	ZeroCERT

50160	2020-11-21 17:09	ds1.exe db0b8c1100f32aafe63cb885a30cc7e0 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself malicious URLs crashed					8.0	M	17	ZeroCERT