Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
5776	2021-03-09 14:31	fyDW7C3p2mWvWD3.exe 67498fe274b311c4b4cf5f61aca831ea Azorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	26	ZeroCERT

5777	2021-03-09 14:31	Kz9YIvr3QcZt1Oj.exe f0c02c52ddb5a537ecc2cf64daed4a32 Azorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows DNS Cryptographic key					3.6	M	26	ZeroCERT

5778	2021-03-09 14:46	L0L4jphtXX5IKA4.exe 91f925f38e7e2088d891776d78bced8e Azorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself Windows DNS Cryptographic key					2.8	M	25	ZeroCERT

5779	2021-03-09 14:46	LLbKGwicvJ88m38.exe 496c1cbcfe80132586adea0c80c464ba Azorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows Cryptographic key					3.0	M	27	ZeroCERT

5780	2021-03-09 14:50	nCoreManage41r.exe 49479db345e2c3694c34f1326035a692 FindFirstVolume CryptGenKey Process Kill VirusTotal Malware Checks debugger unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows					4.0	M	51	ZeroCERT

5781	2021-03-09 14:50	nCoreManager.exe 2f11ef6ef558c8fb652e69f3d88aa1d0 VirusTotal Malware Checks debugger unpack itself Windows utilities Checks Bios Detects VMWare suspicious process malicious URLs WriteConsoleW VMware anti-virtualization Windows Remote Code Execution crashed	1 Keyword trend analysis				7.4	M	55	ZeroCERT

5782	2021-03-09 14:52	ori1.exe 0c91240783834e11dfe8d4fb175c2d81 email stealer Download management info stealer Azorult .NET framework Google Chrome User Data browser Win Trojan agentTesla AsyncRAT backdoor ftp Client VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName DNS Cryptographic key crashed	1 Keyword trend analysis				13.4	M	12	r0d

5783	2021-03-09 14:54	QlSW8fNXuEQdZhA.exe 68b33f7e80a87ce906434a0b0a56bd0b Azorult .NET framework VirusTotal Malware Check memory Checks debugger unpack itself malicious URLs Windows DNS Cryptographic key	3 Keyword trend analysis				3.4	M	15	ZeroCERT

5784	2021-03-09 14:54	ori1.exe 0c91240783834e11dfe8d4fb175c2d81 AsyncRAT backdoor Azorult .NET framework VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Windows ComputerName Cryptographic key crashed					12.2	M	12	ZeroCERT

5785	2021-03-09 14:56	ori1.exe 0c91240783834e11dfe8d4fb175c2d81 email stealer Download management info stealer Azorult .NET framework Google Chrome User Data browser Win Trojan agentTesla AsyncRAT backdoor ftp Client VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName Cryptographic key crashed	3 Keyword trend analysis				12.8	M	12	Kim.GS

5786	2021-03-09 15:01	scr.dll 99fcc32801f86f7f953a93a2e494de0b VirusTotal Malware Malicious Traffic Checks debugger buffers extracted unpack itself DNS	1 Keyword trend analysis	1			4.6	M	41	ZeroCERT

5787	2021-03-09 15:01	s.exe d4fc4b0ef7de340b38e95a393a03c48c Glupteba VirusTotal Malware Code Injection Checks debugger buffers extracted unpack itself malicious URLs IP Check DNS	1 Keyword trend analysis	3	1		9.8	M	62	ZeroCERT

5788	2021-03-09 15:15	simo_exe_ws1011706983.exe 6021e09784d4b8ca5450fe6010c6e543 Emotet VirusTotal Malware Code Injection buffers extracted unpack itself malicious URLs AntiVM_Disk sandbox evasion VM Disk Size Check					7.0	M	68	ZeroCERT

5789	2021-03-09 15:24	st.exe 94016e834271793465e36252c9d2f73e VirusTotal Malware Code Injection Checks debugger buffers extracted unpack itself malicious URLs IP Check Remote Code Execution DNS	1 Keyword trend analysis	3	1		10.2	M	58	ZeroCERT

5790	2021-03-09 15:27	sinqqhd.exe f60b8a0c8976d51ad5f202431b968920 VirusTotal Malware AutoRuns suspicious privilege MachineGuid Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Checks Bios Detects VMWare AppData folder malicious URLs VMware anti-virtualization Tofsee Windows ComputerName DNS crashed	1 Keyword trend analysis	2	1		10.8		50	ZeroCERT

First
Previous
381
382
383
384
385
386
387
388
389
390
Next
Last
Total : 48,320cnts