Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1351
2024-04-14 16:51
com.apple.StreamingUnzipServic...
00d5691cf8e34598bd7b44c2d92f3f9d
guest
1352
2024-04-16 15:22
SecretTeachingsofAllAges.pdf.u...
f69edbec6a4278356d09bce00424a991
URL Format
VirusTotal
Malware
0.4
5
ZeroCERT
1353
2024-04-16 15:22
Tinamous.vbs
e8cd41650fecc932f8c00e3d969f09a6
GuLoader
Generic Malware
Admin Tool (Sysinternals etc ...)
VirusTotal
Malware
0.4
4
ZeroCERT
1354
2024-04-18 12:25
cliente.url
361301f6ad56d5f44ed70afcbf223df0
AntiDebug
AntiVM
URL Format
MSOffice File
VirusTotal
Malware
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
1
Info
×
46.8.210.31 - malware
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
6.4
32
guest
1355
2024-04-19 13:10
Transfusionist.vbs
03e2a0c33e613d9aabf9167bd28cf3c7
GuLoader
Generic Malware
Suspicious_Script_Bin
Admin Tool (Sysinternals etc ...)
Antivirus
AntiDebug
AntiVM
VirusTotal
Malware
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
WMI
Creates shortcut
unpack itself
Windows utilities
Check virtual network interfaces
suspicious process
WriteConsoleW
Tofsee
Windows
Advertising
Google
ComputerName
Cryptographic key
crashed
2
Keyword trend analysis
×
Info
×
https://drive.google.com/uc?export=download&id=1H8v0Z9q8BO4UTENkbTaiWpci8Y0jYRn3
https://drive.usercontent.google.com/download?id=1H8v0Z9q8BO4UTENkbTaiWpci8Y0jYRn3&export=download
4
Info
×
drive.usercontent.google.com(142.250.206.193) - mailcious
drive.google.com(142.250.76.142) - mailcious
142.250.207.78
172.217.31.1
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
11.2
7
ZeroCERT
1356
2024-04-19 13:31
Tartare.chm
4628fc5e0e20cb90631610d009397de2
Suspicious_Script_Bin
AntiDebug
AntiVM
Code Injection
Check memory
crashed
1.4
M
ZeroCERT
1357
2024-04-19 13:37
kraxe
2ed40ba18d004720cc8522dfafdd8309
AntiDebug
AntiVM
wget
VirusTotal
Email Client Info Stealer
Malware
Code Injection
Check memory
Checks debugger
unpack itself
installed browsers check
Browser
Email
3.6
M
9
ZeroCERT
1358
2024-04-23 11:08
loader.ps1
bc9216dd4399300c9b789251456df0ce
Generic Malware
Antivirus
VirusTotal
Malware
Check memory
unpack itself
1.4
21
ZeroCERT
1359
2024-04-23 11:08
a.ps1
180834e934e06de27c57a76f2ca1be20
Generic Malware
Antivirus
VirusTotal
Malware
Check memory
unpack itself
Windows
Cryptographic key
1.6
20
ZeroCERT
1360
2024-04-23 11:15
iz.ps1
33f70912111412effa6b110349cad484
Generic Malware
Antivirus
VirusTotal
Malware
Check memory
unpack itself
WriteConsoleW
Windows
Cryptographic key
1.6
M
19
ZeroCERT
1361
2024-05-05 10:17
ExcUserFault_imagent-2024-04-2...
1194e4a6c9cc73464db69aed6aa4dedd
AntiDebug
AntiVM
Email Client Info Stealer
suspicious privilege
Checks debugger
Creates shortcut
unpack itself
installed browsers check
Browser
Email
ComputerName
3.4
guest
1362
2024-05-05 10:47
ExcUserFault_IMDPersistenceAge...
ea6a71208211258fb4a444a627e19806
AntiDebug
AntiVM
Email Client Info Stealer
suspicious privilege
Checks debugger
Creates shortcut
unpack itself
installed browsers check
Browser
Email
ComputerName
3.4
guest
1363
2024-05-05 10:57
ExcUserFault_IMDPersistenceAge...
ea6a71208211258fb4a444a627e19806
AntiDebug
AntiVM
Email Client Info Stealer
suspicious privilege
Checks debugger
Creates shortcut
unpack itself
installed browsers check
Browser
Email
ComputerName
3.4
guest
1364
2024-05-06 16:56
1.bat
9c376684de141d140fdb7b3b070daef1
Generic Malware
Downloader
Antivirus
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Sniff Audio
HTTP
DNS
Code injection
Internet API
FTP
KeyLogger
P2P
AntiDebug
AntiVM
PowerShell
VirusTotal
Malware
powershell
suspicious privilege
Malicious Traffic
Check memory
Checks debugger
Creates shortcut
unpack itself
powershell.exe wrote
Check virtual network interfaces
suspicious process
WriteConsoleW
Windows
ComputerName
DNS
Cryptographic key
1
Keyword trend analysis
×
Info
×
http://103.138.12.36/trays.exe
1
Info
×
103.138.12.36
1
Info
×
ET INFO Executable Download from dotted-quad Host
11.0
9
ZeroCERT
1365
2024-05-10 16:54
Analytics-2024-05-08-091812.ip...
7290bbf769109f0a486d81d551a3d0b0
AntiDebug
AntiVM
OS Processor Check
Email Client Info Stealer
suspicious privilege
Checks debugger
Creates shortcut
unpack itself
installed browsers check
Browser
Email
ComputerName
3.4
guest
First
Previous
91
92
93
94
95
96
97
98
99
100
Last
Total : 1,500cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword