Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1831
2025-02-26 09:44
wKG7rkG.exe
de31bee3196304b8023cd619b8c71af0
Malicious Library
ScreenShot
AntiDebug
AntiVM
PE File
.NET EXE
PE32
VirusTotal
Malware
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
crashed
7.6
M
50
ZeroCERT
1832
2025-02-26 08:48
7z32.exe
ddb57cd8145f2ec6feaaee196e2ecce2
guest
1833
2025-02-25 13:28
pinky.url
47b368cd79ff5c71954157553553f4c3
Generic Malware
Downloader
Malicious Library
UPX
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
URL For
VirusTotal
Malware
powershell
suspicious privilege
MachineGuid
Code Injection
Check memory
Checks debugger
Creates shortcut
Creates executable files
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
AppData folder
malicious URLs
WriteConsoleW
Windows
ComputerName
Cryptographic key
crashed
2
Info
×
rounds-cams-rebecca-polls.trycloudflare.com(104.16.231.132) - mailcious
104.16.230.132 - mailcious
8.8
M
6
ZeroCERT
1834
2025-02-25 13:27
update.exe
99711400fad366c4e65956fbe17622ec
North Korea
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Buffer PE
AutoRuns
suspicious privilege
Check memory
Checks debugger
buffers extracted
Creates executable files
unpack itself
AppData folder
Windows
ComputerName
Cryptographic key
crashed
7.2
M
41
ZeroCERT
1835
2025-02-25 13:26
gat.bat
f44468dd919a18b28489bd6f302a5d52
Downloader
Malicious Library
UPX
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Sniff Audio
HTTP
DNS
Code injection
Internet API
FTP
KeyLogger
P2P
Hijack Network
persistence
AntiDebug
AntiVM
CAB
PE File
PE32
MZP Fo
VirusTotal
Malware
Code Injection
Check memory
Checks debugger
Creates executable files
unpack itself
AppData folder
malicious URLs
WriteConsoleW
crashed
4.8
M
24
ZeroCERT
1836
2025-02-25 13:24
AA.exe
afd7e00736668b6a169d04195df0527c
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Buffer PE
Malicious Traffic
Check memory
Checks debugger
buffers extracted
Creates executable files
unpack itself
Check virtual network interfaces
AppData folder
Windows
ComputerName
DNS
1
Keyword trend analysis
×
Info
×
http://162.230.48.189/uploads/A.exe
1
Info
×
162.230.48.189 - malware
7.4
M
48
ZeroCERT
1837
2025-02-25 13:23
Invoke-PSHtml5.ps1
0d94af018d0c6eee1d66f6ac19be1eed
Generic Malware
Antivirus
VirusTotal
Malware
Check memory
unpack itself
Windows
Cryptographic key
1.2
3
ZeroCERT
1838
2025-02-25 02:41
ss.exe
b310e7335eae66a533e985b377e81612
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
PE32
MZP Format
suspicious privilege
unpack itself
1.0
guest
1839
2025-02-25 02:41
ss.exe
b310e7335eae66a533e985b377e81612
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
PE32
MZP Format
suspicious privilege
unpack itself
1.0
guest
1840
2025-02-25 01:30
Invoke-PSHtml5.ps1
0d94af018d0c6eee1d66f6ac19be1eed
Generic Malware
Antivirus
VirusTotal
Malware
Check memory
unpack itself
Windows
Cryptographic key
1.2
4
guest
1841
2025-02-24 19:33
llq.rar
10deb629089ea923dae5475bef90fe32
AntiDebug
AntiVM
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Checks debugger
Creates shortcut
unpack itself
installed browsers check
Browser
Email
ComputerName
4.0
16
guest
1842
2025-02-24 15:20
casso.exe
29c0dcc69a50a0965803cfcbb853db27
Process Kill
Generic Malware
Malicious Library
FindFirstVolume
CryptGenKey
UPX
PE File
Device_File_Check
PE32
OS Processor Check
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
MachineGuid
Malicious Traffic
Check memory
Checks debugger
unpack itself
Check virtual network interfaces
IP Check
Windows
Browser
Email
ComputerName
DNS
Cryptographic key
DDNS
Software
crashed
2
Keyword trend analysis
×
Info
×
http://checkip.dyndns.org/
https://reallyfreegeoip.org/xml/121.133.128.1
4
Info
×
reallyfreegeoip.org(104.21.64.1)
checkip.dyndns.org(132.226.8.169)
104.21.112.1 - mailcious
158.101.44.242
7.8
M
40
ZeroCERT
1843
2025-02-24 15:19
js.exe
8d283dc5f077e090d6a4757f7df683d3
XWorm
Hide_EXE
WebCam
Antivirus
UPX
AntiDebug
AntiVM
PE File
.NET EXE
PE32
DLL
OS Processor Check
.NET DLL
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates executable files
unpack itself
Windows utilities
AppData folder
AntiVM_Disk
VM Disk Size Check
Windows
ComputerName
Cryptographic key
10.4
M
47
ZeroCERT
1844
2025-02-24 15:17
Wpmutnro.exe
46441da6848047284fdd6a2dfa19b802
.NET framework(MSIL)
PE File
.NET EXE
PE32
VirusTotal
Malware
Buffer PE
AutoRuns
suspicious privilege
Check memory
Checks debugger
buffers extracted
Creates executable files
unpack itself
Windows
ComputerName
Cryptographic key
crashed
5.4
M
57
ZeroCERT
1845
2025-02-24 15:17
Install.exe
f3b37711b4fdccff04ac73db511e6c97
Vidar
Generic Malware
Malicious Library
Malicious Packer
PE File
PE32
VirusTotal
Malware
ComputerName
RCE
3.2
M
60
ZeroCERT
First
Previous
121
122
123
124
125
126
127
128
129
130
Next
Last
Total : 53,366cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
