Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
976	2020-07-27 14:55	OnlineVerifierSetup_2.0.0.3.ex... e439a11c93d96e76ee12750e408e2430 VirusTotal Malware AutoRuns suspicious privilege Check memory Checks debugger Creates shortcut Creates executable files unpack itself AppData folder malicious URLs AntiVM_Disk VM Disk Size Check human activity check Windows ComputerName keylogger					6.6		19

977	2020-07-27 14:57	astx_setup.exe e766db22a97ac40e4e8c926f272250ab Malware AutoRuns MachineGuid Check memory Checks debugger Creates shortcut Creates executable files unpack itself Windows utilities Auto service AppData folder malicious URLs sandbox evasion WriteConsoleW Firewall state off anti-virtualization Ransomware Windows ComputerName					10.0

978	2020-07-27 14:58	UniSignCRSV3Setup.exe 3bc8fa98ea99c1d05756ab42799a8ba0 VirusTotal Malware AutoRuns Check memory Checks debugger Creates executable files unpack itself Checks Bios Detects VirtualBox Detects VMWare AppData folder malicious URLs AntiVM_Disk sandbox evasion VMware anti-virtualization VM Disk Size Check Windows ComputerName crashed					10.4		5

979	2020-07-27 15:02	http://communicationideadedica... 97a89604b4c0d510465ed27e88d81d48 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities Windows Exploit DNS crashed Downloader	1 Keyword trend analysis	1	3		4.2	M

980	2020-07-27 15:03	http://southwestlogistics.net/... 48aea5530bfb2891a6f8bc32df2bb1ce VirusTotal Malware Code Injection unpack itself Windows utilities malicious URLs Windows	6 Keyword trend analysis Info http://southwestlogistics.net/3333.exe http://southwestlogistics.net/cgi-sys/suspendedpage.cgi http://use.fontawesome.com/releases/v5.0.6/webfonts/fa-solid-900.eot? http://southwestlogistics.net/cgi-sys/suspendedpage.cgi http://use.fontawesome.com/releases/v5.0.6/css/all.css http://use.fontawesome.com/releases/v5.0.6/webfonts/fa-regular-400.eot? http://use.fontawesome.com/releases/v5.0.6/webfonts/fa-brands-400.eot?	4			3.2

981	2020-07-27 15:11	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Dridex Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Tofsee Windows Exploit crashed	7 Keyword trend analysis Info http://www.nalara1220.o-r.kr/CSS/mainC.css http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/CSS/css/lightslider.css http://www.nalara1220.o-r.kr/ http://www.nalara1220.o-r.kr/main.jsp http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml	7	3		3.6

982	2020-07-27 15:17	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

983	2020-07-27 15:19	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

984	2020-07-27 15:23	UniSignCRSV3Setup.exe 3bc8fa98ea99c1d05756ab42799a8ba0 VirusTotal Malware AutoRuns Check memory Checks debugger Creates executable files unpack itself Checks Bios Detects VirtualBox Detects VMWare AppData folder malicious URLs AntiVM_Disk sandbox evasion VMware anti-virtualization VM Disk Size Check Windows ComputerName crashed					10.4		5

985	2020-07-27 16:08	https://liskcrypto.top/zbs.exe 0904add71c8b1b59d251c3cc8e0d3841 VirusTotal Malware Code Injection Creates executable files exploit crash unpack itself Windows utilities AppData folder Tofsee Windows Exploit DNS crashed	1 Keyword trend analysis	1	2		4.6

986	2020-07-27 16:11	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

987	2020-07-27 16:12	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

988	2020-07-27 16:14	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Dridex Malware Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Tofsee Windows Exploit crashed	7 Keyword trend analysis Info http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/ http://www.nalara1220.o-r.kr/CSS/css/lightslider.css http://www.nalara1220.o-r.kr/main.jsp http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://www.nalara1220.o-r.kr/CSS/mainC.css	7	3		4.0

989	2020-07-27 16:23	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

990	2020-07-27 16:24	http://www.nalara1220.o-r.kr/ c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting unpack itself Windows utilities Windows	6 Keyword trend analysis	4			3.0

First
Previous
61
62
63
64
65
66
67
68
69
70
Next
Last
Total : 48,199cnts