| No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | 2022-09-26 17:28 |
 sheet.exe 1451ed9b5629e22afbde901d932f4bfcFormbook RAT PWS .NET framework Generic Malware Hide_EXE [C] All Process Armageddon APT Malicious Library UPX Malicious Packer AntiDebug AntiVM PE32 PE File OS Processor Check .NET EXE VirusTotal Email Client Info Stealer Malware VBScript AutoRuns MachineGuid Code Injection Check memory Checks debugger WMI wscript.exe payload download Creates executable files RWX flags setting exploit crash unpack itself Windows utilities Check virtual network interfaces suspicious process AppData folder AntiVM_Disk sandbox evasion WriteConsoleW IP Check VM Disk Size Check human activity check Windows Exploit Email ComputerName DNS Cryptographic key DDNS crashed Dropper |
1
|
4 | 2 | 10.0 | M | 55 | ZeroCERT | |||||||||||||||
|
|
||||||||||||||||||||||||
- First
- 1
- Last
- Total : 1cnts