Submissions - ZeroBOX

Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	IDS	Rule	Score	Zero	VT	Player	Etc
1276	2020-07-31 16:43	explore.exe 35264093b0e50ccbc2d54082f55d22f5 VirusTotal Malware Check memory Checks debugger unpack itself					2.8		43

1277	2020-07-31 16:46	own.exe 8f75b3a9c0849a64e5d7767709e52169 VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Check memory Checks debugger unpack itself Windows utilities suspicious process malicious URLs WriteConsoleW human activity check installed browsers check Windows Browser Email DNS Cryptographic key	2 Keyword trend analysis	1			8.6		27

1278	2020-07-31 16:51	YHPWdVwlVtkMUjgmSB.exe ef29b6e43ff7f544c1444f0d22842eed VirusTotal Malware Malicious Traffic unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName Remote Code Execution DNS Cryptographic key	1 Keyword trend analysis	1			5.2		7

1279	2020-07-31 16:52	build-black-18dp.svg cbcc2c67b20a62d35280155863b60829 Browser Info Stealer MachineGuid Code Injection Checks debugger buffers extracted WMI unpack itself malicious URLs sandbox evasion installed browsers check Browser DNS		3			9.0

1280	2020-07-31 16:53	0001.jpg e921de1cce7dbb1252285e2b4f18f74a malicious URLs					0.8

1281	2020-07-31 16:57	0001.jpg e921de1cce7dbb1252285e2b4f18f74a malicious URLs					0.8

1282	2020-07-31 17:05	.wget-hsts b502618545ce9e7223b499c0c322bd95 Email Client Info Stealer suspicious privilege Check memory Checks debugger Creates shortcut unpack itself malicious URLs AntiVM_Disk VM Disk Size Check human activity check installed browsers check Browser Email ComputerName DNS	2 Keyword trend analysis	1			5.8

1283	2020-07-31 17:18	http://www.nalara1220.o-r.kr c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files RWX flags setting exploit crash unpack itself Windows utilities malicious URLs Windows Exploit crashed	7 Keyword trend analysis Info http://www.nalara1220.o-r.kr/CSS/js/lightslider.js http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js http://www.nalara1220.o-r.kr/ http://www.nalara1220.o-r.kr/CSS/mainC.css http://www.nalara1220.o-r.kr/main.jsp http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml http://www.nalara1220.o-r.kr/CSS/css/lightslider.css	7			4.0

1284	2020-07-31 17:21	http://www.nalara1220.o-r.kr c032bb944d6fba21799bd5a4df5b6122 Code Injection Creates executable files unpack itself Windows utilities malicious URLs Windows DNS	6 Keyword trend analysis	2			3.6

1285	2020-07-31 17:23	.ICEauthority 6b2b5093099a571f41b44ba1cc2beaa4 Email Client Info Stealer suspicious privilege Check memory Checks debugger Creates shortcut unpack itself malicious URLs AntiVM_Disk VM Disk Size Check human activity check installed browsers check Browser Email ComputerName DNS	2 Keyword trend analysis	1			5.8

1286	2020-07-31 17:25	.ICEauthority 6b2b5093099a571f41b44ba1cc2beaa4 Email Client Info Stealer suspicious privilege Check memory Checks debugger Creates shortcut unpack itself malicious URLs AntiVM_Disk VM Disk Size Check human activity check installed browsers check Browser Email ComputerName DNS	2 Keyword trend analysis	2			5.8

1287	2020-07-31 17:28	.mongorc.js d41d8cd98f00b204e9800998ecf8427e malicious URLs					0.8

1288	2020-07-31 18:07	DOC99281270.exe 361528c897da241e893c868878a98dea VirusTotal Malware suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs					7.4		17

1289	2020-08-01 08:44	64248813.doc 8a07f84450c39b2a25c346b8c15e047f Vulnerability VirusTotal Malware unpack itself					2.6		29

1290	2020-08-01 08:53	2i5s94855.exe ea3e257cf963759c2e7696515cc72e78 VirusTotal Malware Malicious Traffic unpack itself malicious URLs sandbox evasion Windows Advertising ComputerName Remote Code Execution DNS Cryptographic key	1 Keyword trend analysis	2			7.0		11

First
Previous
81
82
83
84
85
86
87
88
89
90
Next
Last
Total : 48,210cnts