Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
5866	2021-03-11 14:55	imyf.exe ec8b389edf6738f9b561418f4b0b0d9c UltraVNC VirusTotal Malware PDB Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs Tofsee Windows Cryptographic key crashed	2 Keyword trend analysis	3	1	1	9.0	M	22	r0d

5867	2021-03-11 15:12	kms.exe 73f7fb41b4a9c097171da9a8681114fe UltraVNC VirusTotal Malware PDB Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs suspicious TLD Tofsee Windows DNS Cryptographic key crashed	1 Keyword trend analysis	3	1		10.6	M	21	ZeroCERT

5868	2021-03-11 15:12	kpk.exe 2156444ea52088dbb4bd33f653b32e7c ftp Client info stealer email stealer Win Trojan agentTesla browser Google Chrome User Data Download management AsyncRAT backdoor VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Ransomware Windows Tor ComputerName Cryptographic key crashed					11.4	M	40	ZeroCERT

5869	2021-03-11 15:24	MR04.exe edf555fc092865d05d3c666e1f4d43b3 Raccoon Stealer VirusTotal Malware unpack itself malicious URLs Remote Code Execution					3.2	M	55	ZeroCERT

5870	2021-03-11 15:26	load.exe 5ed271e10ba37319d01d44acd33489a7 VirusTotal Malware unpack itself Remote Code Execution DNS					3.4	M	48	ZeroCERT

5871	2021-03-11 15:28	o2-31.exe af6b357d6ef9ab109f9c5e0a0222ebc8 Azorult .NET framework ftp Client info stealer email stealer Win Trojan agentTesla browser Google Chrome User Data Download management VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName Cryptographic key crashed					12.4		22	ZeroCERT

5872	2021-03-11 15:30	PAYI.exe ab5f72b5a2dab9a95e856d1bf5afed70 AsyncRAT backdoor VirusTotal Malware Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs suspicious TLD Tofsee Windows DNS Cryptographic key crashed	1 Keyword trend analysis	3	1		10.8	M	55	ZeroCERT

5873	2021-03-11 15:35	phonebook.exe 0c023de3d922fd90f310e6a02fc74d35 Azorult .NET framework ftp Client info stealer email stealer Win Trojan agentTesla browser Google Chrome User Data Download management VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates executable files unpack itself Windows utilities suspicious process AppData folder malicious URLs WriteConsoleW Ransomware Windows Tor ComputerName crashed					13.6	M	44	ZeroCERT

5874	2021-03-11 15:38	PO_1012_678_91.pdf 21ee675a3fffdd41be89941f643443ed backdoor RemcosRAT ftp Client info stealer email stealer AsyncRAT browser Google Chrome User Data Win Trojan agentTesla Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware Buffer PE suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates executable files unpack itself Check virtual network interfaces AppData folder malicious URLs VMware IP Check Tofsee Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	2 Keyword trend analysis	6	5		16.8	M	23	ZeroCERT

5875	2021-03-11 15:39	printing.pdf aaa7cc784230894ba85da68ea19558c0						M		ZeroCERT

5876	2021-03-11 15:42	skup.exe c53f1fd18ee3d2e35471fc7e103a4aa7 UltraVNC VirusTotal Malware PDB Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs suspicious TLD Tofsee Windows DNS Cryptographic key crashed	1 Keyword trend analysis	3	1		11.0	M	21	ZeroCERT

5877	2021-03-11 15:44	load.exe 5ed271e10ba37319d01d44acd33489a7 Generic Malware VirusTotal Malware unpack itself Remote Code Execution					2.8	M	48	r0d

5878	2021-03-11 15:44	start.exea 32f3be8697cbd7c40c05ee83318ae14c VirusTotal Malware unpack itself malicious URLs Remote Code Execution					3.2	M	56	ZeroCERT

5879	2021-03-11 15:46	Sos.exe 7a91e9d2643d8567f7b3800616569fb3 browser info stealer VirusTotal Malware MachineGuid Creates shortcut unpack itself Windows utilities suspicious process malicious URLs AntiVM_Disk VM Disk Size Check Tofsee Windows ComputerName DNS	1 Keyword trend analysis	3	1		5.4	M	52	ZeroCERT

5880	2021-03-11 15:48	svchost.exe 565ac5ba7e675a80cfc1822364c9a701 AsyncRAT backdoor VirusTotal Malware malicious URLs		1			2.0	M	56	ZeroCERT

First
Previous
391
392
393
394
395
396
397
398
399
400
Next
Last
Total : 48,320cnts