Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1501
2025-03-31 12:13
HHH.exe
41e5abbee19d61403ed6259bd04d5c31
UPX
Anti_VM
PE File
.NET EXE
PE32
VirusTotal
Malware
MachineGuid
Check memory
Checks debugger
unpack itself
2.2
M
41
ZeroCERT
1502
2025-03-31 12:12
jjyvr7o8if.exe
e58d52724427879218e2df01bad79481
Gen1
Generic Malware
Malicious Library
UPX
Malicious Packer
Antivirus
Anti_VM
PE File
PE64
DLL
OS Processor Check
ftp
wget
DllRegisterServer
dll
VirusTotal
Malware
Check memory
Creates executable files
unpack itself
crashed
3.2
M
39
ZeroCERT
1503
2025-03-31 12:12
EPTwCQd.exe
19cc136b64066f972db18ef9cc2da8ca
Generic Malware
Malicious Library
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
crashed
2.0
M
49
ZeroCERT
1504
2025-03-31 12:12
LOIC.exe
83c5b0d7677d354a1d237965d2bc4a8f
Malicious Library
PE File
.NET EXE
PE32
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
ComputerName
2.6
M
47
ZeroCERT
1505
2025-03-31 08:51
Bsoft.exe
963d215cb1f7930e5cce65b6372bcca9
Themida
UPX
Anti_VM
PE File
MZP Format
PE32
VirusTotal
Malware
Checks debugger
unpack itself
Checks Bios
Detects VirtualBox
Detects VMWare
VMware
anti-virtualization
Windows
ComputerName
RCE
Trojan
Banking
crashed
7.2
2
guest
1506
2025-03-30 19:09
pro_protected.exe
cb2682082744edad0a73c4ef680c71ea
Themida
Malicious Library
UPX
PE File
.NET EXE
PE32
VirusTotal
Malware
unpack itself
crashed
2.2
M
33
ZeroCERT
1507
2025-03-30 19:06
AAservices.exe
a5afaac697fab2c766051607ae273134
Gen1
RedLine stealer
RedlineStealer
Generic Malware
Malicious Library
.NET framework(MSIL)
Malicious Packer
UPX
PE File
PE64
ftp
OS Processor Check
OS Name Check
VirusTotal
Malware
1.4
30
ZeroCERT
1508
2025-03-30 14:29
web.exe
616c8dd2596e74ef01b7caf741ac02d7
Malicious Library
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
PDB
1.2
M
37
ZeroCERT
1509
2025-03-30 14:27
nbtiapadkrtghja.exe
e9c65505fb3b84a99839e30802ff4c6e
PE File
PE32
VirusTotal
Malware
unpack itself
ComputerName
crashed
2.8
44
ZeroCERT
1510
2025-03-30 14:25
Handicap_NoProtect_Ghost.exe
db8b6ef6a600a6c64a77f669724a54b7
Malicious Library
Malicious Packer
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
MachineGuid
Check memory
Checks debugger
unpack itself
Windows
ComputerName
Cryptographic key
3.0
M
48
ZeroCERT
1511
2025-03-30 14:25
RuntimeBrokerSvc.exe
ee9bd2b3d64511b880fcbd8ad23c71fa
AsyncRAT
.NET framework(MSIL)
Malicious Packer
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
1.2
52
ZeroCERT
1512
2025-03-30 14:18
DocSigning.exe
e46d31704f128872c1159d5edd85c211
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
1.6
M
46
ZeroCERT
1513
2025-03-30 14:16
riotloader.exe
7e2f48566d2ecb1223567928b6e95c79
Generic Malware
Malicious Library
UPX
PE File
PE64
ftp
OS Processor Check
VirusTotal
Malware
PDB
1.8
M
44
ZeroCERT
1514
2025-03-30 14:15
svchosd.exe
a284b850e82b0fdaeea4159e23763216
UPX
PE File
.NET EXE
PE32
VirusTotal
Malware
MachineGuid
Check memory
Checks debugger
unpack itself
2.2
51
ZeroCERT
1515
2025-03-30 14:14
setup.exe
835a2a0a948ed3464df9c5811d56a310
Generic Malware
Malicious Library
Antivirus
Malicious Packer
UPX
PE File
CAB
PE32
OS Processor Check
VirusTotal
Malware
PDB
Check memory
unpack itself
Check virtual network interfaces
Tofsee
Interception
1
Keyword trend analysis
×
Info
×
http://x1.i.lencr.org/
4
Info
×
pub-cba497f350194e308a09f98ef358c552.r2.dev(172.66.0.235) - mailcious
x1.i.lencr.org(23.52.33.11)
23.52.33.11
172.66.0.235 - mailcious
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
3.2
M
27
ZeroCERT
First
Previous
101
102
103
104
105
106
107
108
109
110
Next
Last
Total : 53,604cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
