Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
5341	2021-02-21 09:50	cpu64.exe 033bba02e08aa16f94b9bfe767f8cae7 unpack itself malicious URLs					2.0			ZeroCERT

5342	2021-02-21 09:51	ko.exe 084d9c372d05fc7450a7acc2d730e40a FormBook Malware download VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs Tofsee Windows DNS	2 Keyword trend analysis	4	2		11.0	M	39	ZeroCERT

5343	2021-02-21 10:11	NitroGenerator.exe 8e24d18f451a007e2894ca5f7e3fe768 Browser Info Stealer VirusTotal Malware Check memory buffers extracted Creates executable files malicious URLs WriteConsoleW IP Check Tofsee Browser		6	1		4.2	M	42	ZeroCERT

5344	2021-02-22 09:07	NitroGenerator.exe 8e24d18f451a007e2894ca5f7e3fe768 Browser Info Stealer VirusTotal Malware Check memory buffers extracted Creates executable files malicious URLs WriteConsoleW IP Check Tofsee Browser		6	1		4.2	M	44	ZeroCERT

5345	2021-02-22 09:15	load.exe e4f88c1aa49a3b0810e1b48a2ba6a6e8 VirusTotal Malware unpack itself					1.6	M	27	ZeroCERT

5346	2021-02-22 09:16	5.exe ca783503849f597d3ee2d6555adc1513 VirusTotal Malware malicious URLs Tofsee DNS crashed		2	1		3.4	M	46	ZeroCERT

5347	2021-02-22 09:25	p_1874w0kb61.jpeg.exe 620d5ababdb0b5f65aab59aec4c6b87d VirusTotal Malware PDB					0.8	M	18	ZeroCERT

5348	2021-02-22 09:26	start.exe b3063eef1bab6d67da42943edefed8e5 VirusTotal Malware unpack itself malicious URLs Remote Code Execution					3.0	M	44	ZeroCERT

5349	2021-02-22 18:37	Designs.exe e8fa281769eebdc238ff7996041239a8 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows Cryptographic key					7.6		15	ZeroCERT

5350	2021-02-22 18:38	mor.exe db3d0473753e8752176c1e149b7045d1 Browser Info Stealer Malware download FTP Client Info Stealer Azorult VirusTotal Email Client Info Stealer Malware MachineGuid Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Collect installed applications AppData folder malicious URLs sandbox evasion anti-virtualization installed browsers check Browser Email ComputerName DNS Software	1 Keyword trend analysis	1	3		15.0		16	ZeroCERT

5351	2021-02-22 18:45	svchost.exe 51b97e00fca91e07e2db601e3b855241 VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself suspicious process AppData folder malicious URLs sandbox evasion					5.2	M	28	ZeroCERT

5352	2021-02-22 18:45	sales.exe 06ba8d20fc12d9994f22d0efd9c62f4d VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows ComputerName DNS Cryptographic key crashed					10.8		14	ZeroCERT

5353	2021-02-22 18:53	win32.exe e709c7cbc66b35b69cae03670e3d7631 VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder malicious URLs sandbox evasion					4.4	M	26	ZeroCERT

5354	2021-02-22 18:53	vbc.exe 7e55b9421a4ed419d365d7d199e97ee3 Browser Info Stealer LokiBot Malware download FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware c&c suspicious privilege MachineGuid Malicious Traffic Check memory Creates executable files unpack itself AppData folder malicious URLs AntiVM_Disk sandbox evasion VM Disk Size Check installed browsers check Browser Email ComputerName DNS Software	1 Keyword trend analysis	2	7 Info ET MALWARE LokiBot User-Agent (Charon/Inferno) ET MALWARE LokiBot Checkin ET MALWARE LokiBot Request for C2 Commands Detected M1 ET MALWARE LokiBot Application/Credential Data Exfiltration Detected M1 ET MALWARE LokiBot Request for C2 Commands Detected M2 ET MALWARE LokiBot Application/Credential Data Exfiltration Detected M2 ET MALWARE LokiBot Fake 404 Response		10.6	M	25	ZeroCERT

5355	2021-02-22 19:02	winlog.exe 2dd741d27ed65ae21b497adc51828410 VirusTotal Malware Check memory Checks debugger Creates executable files unpack itself AppData folder malicious URLs sandbox evasion ComputerName crashed					4.8	M	27	ZeroCERT

First
Previous
351
352
353
354
355
356
357
358
359
360
Next
Last
Total : 48,354cnts