Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
901	2020-07-23 13:28	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Dridex Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit crashed	7 Keyword trend analysis Info http://www.nalara1220.o-r.kr/CSS/mainC.css http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://www.nalara1220.o-r.kr/ http://www.nalara1220.o-r.kr/main.jsp http://www.nalara1220.o-r.kr/CSS/css/lightslider.css http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml	7	3		4.0

902	2020-07-23 13:29	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

903	2020-07-23 13:32	222.exe 1e3b01b7f5bd3507a06f034d50282184 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs					8.0		53

904	2020-07-23 13:33	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Dridex Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit crashed	7 Keyword trend analysis Info http://www.nalara1220.o-r.kr/CSS/css/lightslider.css http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/ http://www.nalara1220.o-r.kr/main.jsp http://www.nalara1220.o-r.kr/CSS/mainC.css http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml	7	3		4.0

905	2020-07-23 14:27	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Windows Exploit crashed	7 Keyword trend analysis Info http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/ http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://www.nalara1220.o-r.kr/main.jsp http://www.nalara1220.o-r.kr/CSS/css/lightslider.css http://www.nalara1220.o-r.kr/CSS/mainC.css	6			3.6

906	2020-07-23 14:31	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Dridex Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit crashed	7 Keyword trend analysis Info http://www.nalara1220.o-r.kr/CSS/mainC.css http://www.nalara1220.o-r.kr/CSS/css/lightslider.css http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/ http://www.nalara1220.o-r.kr/main.jsp http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml	7	3		4.0

907	2020-07-23 15:00	222.exe 1e3b01b7f5bd3507a06f034d50282184 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs					8.0		53

908	2020-07-23 15:18	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

909	2020-07-23 15:22	222.exe 1e3b01b7f5bd3507a06f034d50282184 VirusTotal Malware suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself malicious URLs DNS	3 Keyword trend analysis Info http://www.hehe2.net/k0f/ http://www.financialplanner.cloud/k0f/?DV8T=qUrpngFU98fN6cKJktME8F/JrE5wCji7skhBkwNuR1lFW8+XiuVYozcNCF/Lej8auDrmurLj&U0DH=kfo0slYxV4PPOf http://www.hehe2.net/k0f/?DV8T=zQq77QnoFRouyUiOEKFUbHt5e984gm98c303NyNG4bTW6uiZ4f+svO/FnwA/3idNzUWLbsA3&U0DH=kfo0slYxV4PPOf&sql=1	5	2		8.8		53

910	2020-07-23 15:27	견적서20200702,pdf.exe 3b9887f9f9ff50f1c1862b654dea0b80 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs					7.8		38

911	2020-07-23 15:32	견적서20200702,pdf.exe 3b9887f9f9ff50f1c1862b654dea0b80 VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself Windows utilities malicious URLs Windows		5			8.6		38

912	2020-07-23 16:13	33056b2aae2bad24789d8f69005e59... 3a2f24b32b1cf7a53f63505daf4870c5 VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself Windows utilities powershell.exe wrote Check virtual network interfaces suspicious process AppData folder malicious URLs WriteConsoleW Windows ComputerName Cryptographic key		2	2		15.4		12

913	2020-07-23 16:24	test.js bbd1e04bc2f5b8bfc2ba8d651edccf7a malicious URLs crashed					1.0

914	2020-07-23 16:25	test.js bbd1e04bc2f5b8bfc2ba8d651edccf7a malicious URLs crashed					1.0

915	2020-07-23 16:30	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files unpack itself Windows utilities malicious URLs Windows DNS	6 Keyword trend analysis	2			3.6

First
Previous
61
62
63
64
65
66
67
68
69
70
Next
Last
Total : 48,198cnts