Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
241
2024-02-29 07:44
Update.exe
fa8cdfbdff15a0372fbd6a2bb6203e08
Emotet
Gen1
Generic Malware
Malicious Library
UPX
Antivirus
Anti_VM
PE File
PE64
CAB
VirusTotal
Malware
powershell
AutoRuns
PDB
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
Creates executable files
unpack itself
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Remote Code Execution
Cryptographic key
6.8
15
ZeroCERT
242
2024-03-11 10:57
Run.exe
966a466c7ddb151e50b7a782f4ecbeea
Emotet
Gen1
Hide_EXE
Downloader
Malicious Library
UPX
.NET framework(MSIL)
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Sniff Audio
HTTP
DNS
Code injection
Internet API
FTP
KeyLogger
P2P
AntiDebug
AntiVM
PE File
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
AutoRuns
PDB
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates executable files
unpack itself
Windows utilities
AppData folder
WriteConsoleW
Ransomware
Windows
Email
ComputerName
Remote Code Execution
DNS
Software
8.8
M
16
ZeroCERT
243
2024-04-10 13:50
pclient.exe
5790d1417f8f00bd7ec6fb7011c79d9c
Emotet
Gen1
Malicious Library
UPX
PE64
PE File
CAB
VirusTotal
Malware
PDB
Remote Code Execution
1.6
M
23
ZeroCERT
244
2024-05-11 15:03
system32.exe
d1c30d86c227f9c6669b9e3d45489ae0
Emotet
Gen1
Generic Malware
Malicious Library
Antivirus
UPX
PE64
PE File
CAB
DLL
PE32
.NET DLL
powershell
AutoRuns
PDB
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
Creates executable files
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
AppData folder
WriteConsoleW
Windows
ComputerName
Remote Code Execution
DNS
Cryptographic key
1
Info
×
141.148.192.43
9.8
ZeroCERT
245
2024-05-13 09:09
leadiadequatepro.exe
b149f82964b1e269ade2686612a9e777
Emotet
Gen1
Hide_EXE
Malicious Library
UPX
.NET framework(MSIL)
PE64
PE File
CAB
OS Processor Check
.NET EXE
PE32
VirusTotal
Malware
AutoRuns
PDB
Check memory
Checks debugger
Creates executable files
unpack itself
AppData folder
Windows
ComputerName
Remote Code Execution
5.0
M
44
ZeroCERT
246
2024-06-26 10:13
3f12ea9a-79fa-40c4-802f-9bbddf...
5f331887bec34f51cca7ea78815621f7
Gen1
Emotet
Generic Malware
Malicious Library
UPX
Antivirus
PE File
PE64
CAB
VirusTotal
Malware
powershell
AutoRuns
PDB
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
Creates executable files
unpack itself
Windows utilities
suspicious process
WriteConsoleW
Windows
ComputerName
Remote Code Execution
Cryptographic key
9.0
M
42
ZeroCERT
First
Previous
11
12
13
14
15
16
17
Last
Total : 246cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword