Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
5761	2021-03-09 11:43	AmyEATp2oxgtQGy.exe 6ce7da1da6977452761a8e63f1602bce VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows DNS Cryptographic key					3.6	M	25	ZeroCERT

5762	2021-03-09 12:17	jXraXEVi4GFqznp.exe 22898c0d2a2058926bfec654a54419b7 VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	25	조광섭

5763	2021-03-09 12:32	jXraXEVi4GFqznp.exe 22898c0d2a2058926bfec654a54419b7 VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	25	조광섭

5764	2021-03-09 12:40	jXraXEVi4GFqznp.exe 22898c0d2a2058926bfec654a54419b7 Win32_Trojan_PWS_Azorult_Net_1_Zero VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	25	조광섭

5765	2021-03-09 12:53	this.exe c49dd8107b3624f824efe4f88cb3f792 FindFirstVolume_Zero Process_Snapshot_Kill_Zero CryptGenKey_Zero Malware download VirusTotal Cryptocurrency Miner Malware Cryptocurrency AutoRuns Code Injection Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process malicious URLs sandbox evasion WriteConsoleW Windows Browser ComputerName DNS Downloader		1	6 Info ET POLICY Autoit Windows Automation tool User-Agent in HTTP Request - Possibly Hostile ET INFO Executable Download from dotted-quad Host ET INFO AutoIt User Agent Executable Request ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile		12.8	M	52	조광섭

5766	2021-03-09 13:16	c.exe 176fa86193f2c903cf10de7910569685 VirusTotal Malware unpack itself					2.4	M	58	ZeroCERT

5767	2021-03-09 13:18	b6aZzthjrVJ6hsM.exe 48d85fcda8b35cda9b7ddf642efb79e5 Win32_Trojan_PWS_Azorult_Net_1_Zero VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	26	ZeroCERT

5768	2021-03-09 13:26	cBsHQEe3OQU3scR.exe fe05edba7ace7f8eab7513404447ab48 Win32_Trojan_PWS_Azorult_Net_1_Zero VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	28	ZeroCERT

5769	2021-03-09 13:30	Daemon.exe dd3de309df5791a357534b613270ca3a FindFirstVolume_Zero Process_Snapshot_Kill_Zero CryptGenKey_Zero VirusTotal Cryptocurrency Miner Malware Cryptocurrency AutoRuns Code Injection Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process malicious URLs sandbox evasion WriteConsoleW Windows Browser ComputerName DNS		1	5 Info ET POLICY Autoit Windows Automation tool User-Agent in HTTP Request - Possibly Hostile ET INFO Executable Download from dotted-quad Host ET INFO AutoIt User Agent Executable Request ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response		11.8	M	52	ZeroCERT

5770	2021-03-09 13:39	po_6645.cab 35d478c0fce6a6188acd87c600790615 VirusTotal Malware					1.0		17	ZeroCERT

5771	2021-03-09 13:43	po_6645.com f0246040c945b8e79195c661cd537599 VirusTotal Malware RWX flags setting unpack itself DNS					2.6		46	ZeroCERT

5772	2021-03-09 13:49	Daemon.exe dd3de309df5791a357534b613270ca3a FindFirstVolume CryptGenKey Process Kill VirusTotal Cryptocurrency Miner Malware Cryptocurrency AutoRuns Code Injection Malicious Traffic Check memory Checks debugger Creates executable files unpack itself Windows utilities suspicious process malicious URLs sandbox evasion WriteConsoleW Windows Browser ComputerName DNS		1	5 Info ET POLICY Autoit Windows Automation tool User-Agent in HTTP Request - Possibly Hostile ET INFO Executable Download from dotted-quad Host ET INFO AutoIt User Agent Executable Request ET POLICY PE EXE or DLL Windows file download HTTP ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response		11.8	M	52	guest

5773	2021-03-09 13:56	defender.exe a48e04592a55cc70f2d5ac950cca7c3d FindFirstVolume CryptGenKey Process Kill VirusTotal Malware Check memory Checks debugger malicious URLs crashed					2.6	M	48	ZeroCERT

5774	2021-03-09 13:58	fkTIVvq9NNRUzpX.exe 4645a9e7f1245d3e5aff2970b8efb8f9 Azorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows DNS Cryptographic key					3.8	M	32	ZeroCERT

5775	2021-03-09 14:04	defender.exe a48e04592a55cc70f2d5ac950cca7c3d FindFirstVolume CryptGenKey Process Kill VirusTotal Malware Checks debugger malicious URLs					2.2	M	48	r0d

First
Previous
381
382
383
384
385
386
387
388
389
390
Next
Last
Total : 48,320cnts