Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1
2024-10-20 09:52
16.exe
9a8d140364c483b41609196ab3cc4552
Generic Malware
Malicious Library
Malicious Packer
ASPack
UPX
PE File
DllRegisterServer
dll
PE32
OS Processor Check
VirusTotal
Malware
Check memory
unpack itself
Remote Code Execution
2.6
M
40
ZeroCERT
2
2024-10-16 11:11
%E6%8A%96%E9%9F%B3%E5%BC%B9%E5...
467692ca4ffc05c33fa1381e92f1baf9
Generic Malware
Malicious Library
ASPack
UPX
PE File
DllRegisterServer
dll
PE32
OS Processor Check
VirusTotal
Malware
unpack itself
Remote Code Execution
2.8
M
44
ZeroCERT
3
2024-10-15 18:05
update.exe
d77ae460c0411b137e405520a0fd5120
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Check memory
unpack itself
Remote Code Execution
3.0
M
41
r0d
4
2024-10-15 17:29
update.exe
d77ae460c0411b137e405520a0fd5120
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
Remote Code Execution
2.8
41
ZeroCERT
5
2024-09-30 09:53
%E8%99%9A%E6%8B%9F%E6%9C%BA%E9...
8a060e06880e61f9eb9d2d8ef96a48f6
Generic Malware
Malicious Library
ASPack
UPX
PE File
DllRegisterServer
dll
PE32
OS Processor Check
VirusTotal
Malware
Remote Code Execution
2.0
M
47
ZeroCERT
6
2024-09-27 13:49
11111111.exe
d42a19b547b8a8f16738fe082c205f2b
Generic Malware
Malicious Library
ASPack
UPX
PE File
DllRegisterServer
dll
PE32
OS Processor Check
VirusTotal
Malware
unpack itself
Remote Code Execution
2.2
M
39
ZeroCERT
7
2024-09-27 13:43
1221.exe
b2d997ae878ab9eb95c015548367b746
Emotet
Generic Malware
Malicious Library
Malicious Packer
ASPack
UPX
PE File
DllRegisterServer
dll
PE32
OS Processor Check
DLL
VirusTotal
Malware
Creates executable files
unpack itself
AppData folder
Remote Code Execution
3.6
M
40
ZeroCERT
8
2024-08-06 09:27
12333.exe
2575fb6a535c5b03e282ed92151513ac
Generic Malware
Malicious Library
ASPack
UPX
DllRegisterServer
dll
PE File
PE32
OS Processor Check
DLL
VirusTotal
Malware
Creates executable files
unpack itself
AppData folder
Remote Code Execution
3.4
M
39
ZeroCERT
9
2024-06-16 10:30
12121212121.exe
777396c8d1529dad186a2e954ab9a40c
Emotet
Generic Malware
Malicious Library
Downloader
ASPack
UPX
Malicious Packer
Anti_VM
DllRegisterServer
dll
PE File
PE32
OS Processor Check
VirusTotal
Malware
suspicious privilege
Creates executable files
Windows utilities
AppData folder
WriteConsoleW
installed browsers check
Windows
Browser
Remote Code Execution
1
Keyword trend analysis
×
Info
×
http://ddos.dnsnb8.net/cj//k1.rar
4
Info
×
ddos.dnsnb8.net(44.221.84.105) - mailcious
smtp.163.com(103.129.252.45)
103.129.252.45
44.221.84.105
1
Info
×
SURICATA Applayer Detect protocol only one direction
5.4
M
56
ZeroCERT
10
2024-06-16 10:29
2.exe
1046a5b7a54fe184ab79e8925f1bfafe
Generic Malware
Malicious Packer
Malicious Library
ASPack
UPX
DllRegisterServer
dll
PE File
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Creates shortcut
unpack itself
Remote Code Execution
DNS
1
Keyword trend analysis
×
Info
×
http://www.baidu.com/
3
Info
×
www.baidu.com(119.63.197.151)
114.132.189.148 - mailcious
119.63.197.139
4.0
M
48
ZeroCERT
11
2024-06-16 10:19
163.exe
8e4c0eeb469f011e6aea3dbd07106515
Generic Malware
Malicious Library
Downloader
ASPack
UPX
Malicious Packer
Anti_VM
DllRegisterServer
dll
PE File
PE32
OS Processor Check
VirusTotal
Malware
suspicious privilege
Creates executable files
unpack itself
Windows utilities
AppData folder
WriteConsoleW
installed browsers check
Windows
Browser
Remote Code Execution
4
Info
×
ddos.dnsnb8.net(44.221.84.105) - mailcious
smtp.163.com(103.129.252.45)
103.129.252.45
44.221.84.105
1
Info
×
SURICATA Applayer Detect protocol only one direction
6.4
M
65
ZeroCERT
12
2024-06-16 09:59
%E5%A4%A7JJ.exe
d436dc7faa63db35b10524ac82ab7631
Generic Malware
Malicious Library
Downloader
ASPack
UPX
Malicious Packer
Anti_VM
DllRegisterServer
dll
PE File
PE32
OS Processor Check
VirusTotal
Malware
Creates executable files
ICMP traffic
unpack itself
Windows utilities
AppData folder
WriteConsoleW
installed browsers check
Windows
Browser
Remote Code Execution
4
Info
×
ddos.dnsnb8.net(44.221.84.105) - mailcious
smtp.163.com(103.129.252.45)
103.129.252.45
44.221.84.105
1
Info
×
SURICATA Applayer Detect protocol only one direction
6.8
M
68
ZeroCERT
13
2024-05-03 15:53
svchosts.exe
10e53496bc04214f85f2ba5688430edb
XMRig Miner
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
DllRegisterServer
dll
PE32
OS Processor Check
PE64
VirusTotal
Cryptocurrency Miner
Malware
Cryptocurrency
AutoRuns
Check memory
Creates executable files
unpack itself
Auto service
Check virtual network interfaces
WriteConsoleW
Windows
ComputerName
Remote Code Execution
Firmware
6.6
53
ZeroCERT
14
2023-12-04 18:12
1.dll
60cdf8bcf6966eac70e5f38c26c0003c
Emotet
Gen1
Generic Malware
Malicious Library
Malicious Packer
Antivirus
UPX
PE32
PE File
DLL
DllRegisterServer
dll
OS Processor Check
VirusTotal
Malware
Remote Code Execution
1.8
M
35
ZeroCERT
15
2023-12-04 15:34
1.dll
60cdf8bcf6966eac70e5f38c26c0003c
Emotet
Gen1
Generic Malware
Malicious Library
Malicious Packer
Antivirus
UPX
PE32
PE File
DLL
DllRegisterServer
dll
OS Processor Check
Remote Code Execution
0.8
M
ZeroCERT
First
1
2
Last
Total : 16cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
