Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
5281	2021-02-19 09:49	1234.exe a851dcd69acace9fb77c30113773df84 VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself					3.0	M	41	ZeroCERT

5282	2021-02-19 10:01	44245787663425900000_2.dat.exe 57923acbcdd3293951256ae06dcde44a AutoRuns Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder sandbox evasion WriteConsoleW Windows ComputerName crashed					8.2			ZeroCERT

5283	2021-02-19 10:02	44245764490856500000.dat.exe 57923acbcdd3293951256ae06dcde44a Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs sandbox evasion ComputerName DNS crashed	1 Keyword trend analysis	3			6.2			ZeroCERT

5284	2021-02-19 10:05	ccccccccccc.dll fced3a968d708ebe6636f17262bfbed6 VirusTotal Malware					1.4	M	20	ZeroCERT

5285	2021-02-19 10:05	aaaaaaaaaaa.dll 4c5c31d0f4fed8533d180622f6dc69fb VirusTotal Malware					0.8	M	5	ZeroCERT

5286	2021-02-19 10:17	DXCpl.exe a851dcd69acace9fb77c30113773df84 VirusTotal Malware MachineGuid Check memory Checks debugger unpack itself DNS					3.6	M	41	ZeroCERT

5287	2021-02-19 10:21	njvarios.exe 339889f2de649e4b54683c0401d459e5 VirusTotal Malware PDB Code Injection WMI Creates executable files RWX flags setting unpack itself suspicious process AppData folder malicious URLs ComputerName Remote Code Execution crashed					9.4	M	36	ZeroCERT

5288	2021-02-19 10:23	chase_Summary.exe.pif d767852b7e5147ae9ea47d13bea99ef3 Browser Info Stealer Malware download FTP Client Info Stealer Azorult VirusTotal Email Client Info Stealer Malware Cryptocurrency wallets Cryptocurrency PDB suspicious privilege MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files exploit crash unpack itself Windows utilities Collect installed applications Check virtual network interfaces suspicious process AppData folder malicious URLs sandbox evasion WriteConsoleW anti-virtualization installed browsers check Tofsee Ransomware Windows Exploit Browser Email ComputerName Remote Code Execution DNS Software crashed	6 Keyword trend analysis Info http://redirector.gvt1.com/edgedl/release2/update2/ALmnr7lDhOvozdF08iOk7Ks_1.3.36.72/GoogleUpdateSetup.exe http://r3---sn-3u-bh26.gvt1.com/edgedl/release2/update2/ALmnr7lDhOvozdF08iOk7Ks_1.3.36.72/GoogleUpdateSetup.exe?cms_redirect=yes&mh=pH&mip=175.208.134.150&mm=28&mn=sn-3u-bh26&ms=nvh&mt=1613697135&mv=m&mvi=3&pl=18&shardbypass=yes http://illusionist.com.my/go/PL341/index.php https://update.googleapis.com/service/update2 https://update.googleapis.com/service/update2?cup2key=10:3673027502&cup2hreq=10b0303d62efcb395ba139ce07619520c5e2e1633ea33264c2474e4433297a94 https://www.google.com/	7	5		23.0	M	29	ZeroCERT

5289	2021-02-19 10:31	win21st.txt.exe a7913461e211158d5ac34ac3bd06bc7b VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities Collect installed applications AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser Software		1			13.0	M	52	ZeroCERT

5290	2021-02-19 10:32	wininst.exe a7913461e211158d5ac34ac3bd06bc7b VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities Collect installed applications AppData folder malicious URLs WriteConsoleW anti-virtualization installed browsers check Windows Browser DNS Software		1			14.6	M	52	ZeroCERT

5291	2021-02-19 10:34	1802.gif.exe c932cf352c7f9a7748dc28b3b1a8ac1c VirusTotal Malware					1.2	M	43	ZeroCERT

5292	2021-02-19 10:36	work.exe 20582340f93fdefaaeb114ffd7f659e2 VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces malicious URLs WriteConsoleW Tofsee Windows DNS Cryptographic key	1 Keyword trend analysis	4	1		12.4	M	40	ZeroCERT

5293	2021-02-19 11:28	bnk.exe 56b123b6b9d603e368611df09313f896 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware suspicious privilege Check memory Checks debugger unpack itself malicious URLs Windows Browser Email ComputerName DNS Cryptographic key Software crashed keylogger					8.8	M	50	ZeroCERT

5294	2021-02-19 11:31	bb.exe 27a26b9535f908ea109a9e1fa986a842 VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows utilities Check virtual network interfaces malicious URLs WriteConsoleW Tofsee Windows DNS Cryptographic key DDNS	1 Keyword trend analysis	5	2		14.4	M	43	ZeroCERT

5295	2021-02-19 11:33	bt-killscrit-w8123.exe 5843700fca0fbdce640393ad95ec4205 Malware download Wshrat VirusTotal Malware VBScript AutoRuns PDB Code Injection WMI wscript.exe payload download Creates executable files unpack itself AppData folder malicious URLs AntiVM_Disk VM Disk Size Check Tofsee Windows Houdini ComputerName Remote Code Execution DNS DDNS crashed Dropper	1 Keyword trend analysis	6	4		10.0	M	48	ZeroCERT

First
Previous
351
352
353
354
355
356
357
358
359
360
Next
Last
Total : 48,354cnts