Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1
2021-10-07 17:38
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
9.8
M
r0d
2
2021-10-07 17:30
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
10.0
M
r0d
3
2021-10-07 17:21
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
11.0
M
r0d
4
2021-10-07 17:16
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
9.4
M
r0d
5
2021-10-07 17:12
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
9.4
M
r0d
6
2021-10-07 17:09
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
9.4
r0d
7
2021-10-07 17:02
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
10.0
r0d
8
2021-10-07 16:44
Clipper.exe
a76095f2d5727733b3ca4bd8a51349a2
RAT
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
PE32
.NET EXE
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
DNS
Cryptographic key
1
Info
×
162.0.210.44 - mailcious
11.0
ZeroCERT
9
2021-09-27 08:03
1337.exe
b1f7f880924a93222a01cf3bc0a9ed83
PWS
.NET framework
Generic Malware
Antivirus
AntiDebug
AntiVM
PE File
.NET EXE
PE32
VirusTotal
Malware
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
10.2
20
ZeroCERT
First
1
Last
Total : 9cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
