Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1
2024-09-19 10:27
231.exe
4fa734db8e9f7ce5ecd217b34ecc6969
Gen1
Generic Malware
NSIS
Malicious Library
Admin Tool (Sysinternals etc ...)
Malicious Packer
UPX
Javascript_Blob
AntiDebug
AntiVM
PE File
PE32
MZP Format
OS Processor Check
DLL
PE64
PNG Format
DllRegisterServer
dll
Browser Info Stealer
Malware download
FTP Client Info Stealer
NetWireRC
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
WMI
Creates executable files
unpack itself
Windows utilities
Collect installed applications
Check virtual network interfaces
suspicious process
AppData folder
installed browsers check
SectopRAT
Windows
Browser
Backdoor
ComputerName
DNS
Cryptographic key
Software
crashed
keylogger
1
Keyword trend analysis
×
Info
×
http://45.141.86.82:9000/wbinjget?q=4647BCCD302FD52A28C2EB9D88218DA4
1
Info
×
45.141.86.82
3
Info
×
ET MALWARE Arechclient2 Backdoor/SecTopRAT Related Activity
ET MALWARE Arechclient2 Backdoor/SecTopRAT CnC Init
ET MALWARE Arechclient2 Backdoor/SecTopRAT Related Activity M2 (GET)
12.4
M
39
ZeroCERT
2
2024-09-04 10:15
66d6af212bad3_kbdturme.exe
b2ceff540f1fb7234b424a5702e989ba
Gen1
Generic Malware
NSIS
Malicious Library
Admin Tool (Sysinternals etc ...)
Malicious Packer
UPX
Javascript_Blob
AntiDebug
AntiVM
PE File
PE32
MZP Format
OS Processor Check
DLL
PE64
PNG Format
DllRegisterServer
dll
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
Windows
ComputerName
crashed
7.0
M
6
ZeroCERT
3
2024-05-22 10:12
Setup.exe
a4e84bdb6fba7b3c5689b0f2bc5ec858
Generic Malware
PE File
PE32
PNG Format
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
ComputerName
Remote Code Execution
crashed
2.8
12
ZeroCERT
First
1
Last
Total : 3cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword