Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1756
2024-07-31 10:24
Archivejuudyyy.jpeg.vbs
7f2edeb8382cb0397d03bf2b3b32e528
ActiveXObject
VirusTotal
Malware
unpack itself
crashed
1.0
8
ZeroCERT
1757
2024-07-31 10:22
taxpreperationz.exe
20bbb7f851683930e080e888e1fd7c5f
Gen1
NSIS
Generic Malware
Malicious Library
UPX
Malicious Packer
Antivirus
Javascript_Blob
Anti_VM
PE File
PE32
DLL
OS Processor Check
PE64
ftp
icon
PNG Format
Malware
suspicious privilege
Check memory
Creates executable files
unpack itself
AppData folder
AntiVM_Disk
Ransom Message
VM Disk Size Check
Ransomware
5.8
ZeroCERT
1758
2024-07-31 10:22
kjposter.exe
456509bf6306fe9f2f34cc8177cad73d
Confuser .NET
Malicious Library
Malicious Packer
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
VirusTotal
Malware
suspicious privilege
Check memory
Checks debugger
unpack itself
Check virtual network interfaces
Windows
ComputerName
Cryptographic key
crashed
4.4
M
34
ZeroCERT
1759
2024-07-31 10:22
wearekingofthejunglewithentier...
070b1946c9ab7ef8801ece97cc27eb0c
MS_RTF_Obfuscation_Objects
RTF File
doc
VirusTotal
Malware
Malicious Traffic
exploit crash
unpack itself
Tofsee
Exploit
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://192.227.225.166/101/seemsgoodbutterflyherenow.gIF
3
Info
×
ia803104.us.archive.org(207.241.232.154) - malware
192.227.225.166 - malware
207.241.232.154 - malware
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
4.6
M
39
ZeroCERT
1760
2024-07-31 10:19
memissedverynicesweetkissheren...
cf3ae921fc075c967cac5a5e384849bc
MS_RTF_Obfuscation_Objects
RTF File
doc
Malware
Malicious Traffic
RWX flags setting
exploit crash
Tofsee
Exploit
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://192.3.176.174/75/wesimplykissyourlipsdeeply.gIF
3
Info
×
ia803104.us.archive.org(207.241.232.154) - malware
192.3.176.174 - mailcious
207.241.232.154 - malware
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
3.6
M
ZeroCERT
1761
2024-07-31 10:19
meneedyourverybadlywithentiret...
f781d204ec1279f75a5cc307a7617260
MS_RTF_Obfuscation_Objects
RTF File
doc
Malware
Malicious Traffic
exploit crash
unpack itself
Tofsee
Exploit
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://104.168.45.34/65/iwanttokissyourlipswithmereally.gIF
3
Info
×
ia803104.us.archive.org(207.241.232.154) - malware
207.241.232.154 - malware
104.168.45.34 - mailcious
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
3.6
M
ZeroCERT
1762
2024-07-31 10:17
medium
581bca6d99edd1eb945af367af110a8c
UPX
PE File
PE32
VirusTotal
Malware
PDB
Remote Code Execution
1.4
M
30
ZeroCERT
1763
2024-07-31 10:17
oo
ea252af032b9cb8339089c3a8369e6b3
UPX
PE File
PE32
VirusTotal
Malware
PDB
Remote Code Execution
1.6
M
41
ZeroCERT
1764
2024-07-31 10:17
123123123
73afff7e03cd55b7bc02151da0782e7b
UPX
PE File
PE32
VirusTotal
Malware
PDB
Remote Code Execution
1.6
M
32
ZeroCERT
1765
2024-07-31 10:17
releaseform
db1ae063d1be2bcb6af8f4afb145cdc4
UPX
PE File
PE32
VirusTotal
Malware
PDB
Remote Code Execution
1.4
M
29
ZeroCERT
1766
2024-07-31 10:17
video.lnk
55f9bf18d0ea6f426693056bde8a443f
Generic Malware
Antivirus
AntiDebug
AntiVM
Lnk Format
GIF Format
VirusTotal
Malware
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
RWX flags setting
unpack itself
powershell.exe wrote
suspicious process
Interception
Windows
ComputerName
DNS
Cryptographic key
1
Keyword trend analysis
×
Info
×
https://niceslice.top/video
2
Info
×
niceslice.top(93.183.69.189) - mailcious
93.183.69.189 - mailcious
1
Info
×
ET DNS Query to a *.top domain - Likely Hostile
7.4
25
ZeroCERT
1767
2024-07-31 10:16
SetupPacket
bcd6b5fcc67a0ebde9c476dd48111041
UPX
PE File
PE32
VirusTotal
Malware
PDB
Remote Code Execution
1.4
M
37
ZeroCERT
1768
2024-07-31 09:59
truck.lnk
88004ecaabefd311a5abf9b192486964
Generic Malware
Antivirus
AntiDebug
AntiVM
Lnk Format
GIF Format
VirusTotal
Malware
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
RWX flags setting
unpack itself
powershell.exe wrote
suspicious process
suspicious TLD
Interception
Windows
ComputerName
DNS
Cryptographic key
1
Keyword trend analysis
×
Info
×
https://bigpage.top/truck
2
Info
×
bigpage.top(93.183.69.189)
93.183.69.189 - mailcious
1
Info
×
ET DNS Query to a *.top domain - Likely Hostile
7.8
22
ZeroCERT
1769
2024-07-31 09:57
test3.lnk
771cc2426ce03fd946da48ce7bfa9d90
Generic Malware
Antivirus
AntiDebug
AntiVM
Lnk Format
GIF Format
VirusTotal
Malware
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
RWX flags setting
unpack itself
powershell.exe wrote
suspicious process
Interception
Windows
ComputerName
Cryptographic key
1
Keyword trend analysis
×
Info
×
https://minusparty.com/test3
2
Info
×
minusparty.com(93.183.69.189)
93.183.69.189 - mailcious
7.4
26
ZeroCERT
1770
2024-07-31 09:57
test1.lnk
80d39df7a53e3c5e23eb0a71f6799882
Generic Malware
Antivirus
AntiDebug
AntiVM
Lnk Format
GIF Format
VirusTotal
Malware
powershell
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
RWX flags setting
unpack itself
powershell.exe wrote
suspicious process
Interception
Windows
ComputerName
DNS
Cryptographic key
1
Keyword trend analysis
×
Info
×
https://niceslice.top/test
2
Info
×
niceslice.top(93.183.69.189) - mailcious
93.183.69.189 - mailcious
1
Info
×
ET DNS Query to a *.top domain - Likely Hostile
8.0
24
ZeroCERT
First
Previous
111
112
113
114
115
116
117
118
119
120
Next
Last
Total : 48,230cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword