Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
1936
2024-07-26 10:26
joom.exe
278d770f363da10c7f7eb1a9c653ccf0
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
unpack itself
Remote Code Execution
2.0
30
ZeroCERT
1937
2024-07-25 16:22
ExcelRepairKitInstall.exe
9495509a5c158e6039fd72f21d69d07b
Gen1
Malicious Library
UPX
PE File
PE32
MZP Format
OS Processor Check
PE64
suspicious privilege
Check memory
Checks debugger
WMI
unpack itself
Windows utilities
AppData folder
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
4.6
guest
1938
2024-07-25 16:15
IMG_0972.jpeg
27df612d5004eb2e629ae814a9aaa6e0
JPEG Format
guest
1939
2024-07-25 15:34
linkedin.exe
1a99f8243d4971ae826fc063142c5b0b
UPX
PE File
PE32
VirusTotal
Malware
1.2
40
ZeroCERT
1940
2024-07-25 15:34
Tgnviazinc.exe
8f1ddc73cd5ca16d3ac140423ce7726b
PE File
PE64
Buffer PE
MachineGuid
Check memory
Checks debugger
buffers extracted
RWX flags setting
unpack itself
suspicious process
WriteConsoleW
Windows
Cryptographic key
crashed
4.2
ZeroCERT
1941
2024-07-25 11:22
pic1.jpg.exe
d3785ed170cdb1f4784d3dff3a61dae0
Generic Malware
Malicious Library
Malicious Packer
UPX
Anti_VM
DllRegisterServer
dll
PE File
PE64
OS Processor Check
VirusTotal
Malware
1.2
M
45
ZeroCERT
1942
2024-07-25 11:22
msoffice365update.msi
f95336c88ee7f8b6275fac1a458dad53
Generic Malware
Malicious Library
Malicious Packer
UPX
ScreenShot
Escalate priviledges
AntiDebug
AntiVM
MSOffice File
OS Processor Check
PE File
DLL
PE32
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
6.8
M
4
ZeroCERT
1943
2024-07-25 11:21
OONNeSeeVENFIIVeeeFiLLz.txt.ps...
64717fec2319ab924581ef12c8e91d0d
Generic Malware
Antivirus
VirusTotal
Malware
unpack itself
WriteConsoleW
Windows
Cryptographic key
1
Keyword trend analysis
×
Info
×
http://104.243.47.84:222/OONNeSeeVENFIIVeeeFiLLz.jpg
1.4
M
17
ZeroCERT
1944
2024-07-25 11:17
pic1.jpg.exe
d3785ed170cdb1f4784d3dff3a61dae0
Generic Malware
Malicious Library
Malicious Packer
UPX
Anti_VM
DllRegisterServer
dll
PE File
PE64
OS Processor Check
VirusTotal
Malware
1.2
45
ZeroCERT
1945
2024-07-25 11:01
Revised PI_2024.exe
30eb52136b6ec784959ad4f269d1ad84
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
Checks debugger
unpack itself
3.0
31
ZeroCERT
1946
2024-07-25 11:01
office365crowndStrike.msi
8a9baf0bf2ffabd39007a630a430a29b
Generic Malware
Downloader
Malicious Library
UPX
Malicious Packer
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDeb
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
malicious URLs
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
crashed
7.0
M
3
ZeroCERT
1947
2024-07-25 10:22
WidowsSystem-update.msi
3b48c90d4a283982ced898df9570894b
Generic Malware
Malicious Library
UPX
Malicious Packer
ScreenShot
Escalate priviledges
AntiDebug
AntiVM
MSOffice File
OS Processor Check
PE File
PE32
DLL
suspicious privilege
Code Injection
Check memory
Checks debugger
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
6.4
ZeroCERT
1948
2024-07-25 10:22
office365crowndStrike.msi
8a9baf0bf2ffabd39007a630a430a29b
Generic Malware
Malicious Library
UPX
Malicious Packer
ScreenShot
Escalate priviledges
AntiDebug
AntiVM
MSOffice File
OS Processor Check
PE File
PE32
DLL
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
6.8
3
ZeroCERT
1949
2024-07-25 10:21
msoffice365update.msi
f95336c88ee7f8b6275fac1a458dad53
Generic Malware
Downloader
Malicious Library
UPX
Malicious Packer
ScreenShot
Escalate priviledges
Create Service
Socket
DGA
Http API
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDeb
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
malicious URLs
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
6.8
4
ZeroCERT
1950
2024-07-25 09:04
verygoodthingstobegreatadvance...
d28a4f03a2969a60dda6a00aacc0d18e
MS_RTF_Obfuscation_Objects
RTF File
doc
VirusTotal
Malware
Malicious Traffic
RWX flags setting
exploit crash
Exploit
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://198.46.174.139/41/winiti.exe
1
Info
×
198.46.174.139 - malware
1
Info
×
ET INFO Executable Download from dotted-quad Host
4.6
M
35
ZeroCERT
First
Previous
121
122
123
124
125
126
127
128
129
130
Next
Last
Total : 48,231cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword