Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
2701
2020-11-10 10:51
PaymentconfirmationReceipt.Doc...
5d78ff6a171210e8f566ec2dca0390a7
VirusTotal
Malware
powershell
AutoRuns
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
buffers extracted
Creates shortcut
Creates executable files
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
AppData folder
malicious URLs
WriteConsoleW
IP Check
Windows
ComputerName
DNS
Cryptographic key
crashed
1
Keyword trend analysis
×
Info
×
http://api.ipify.org/
3
Info
×
api.ipify.org(54.225.153.147)
54.235.98.120
172.217.25.14 - suspicious
1
Info
×
ET POLICY External IP Lookup api.ipify.org
16.2
M
26
guest
2702
2020-11-10 10:56
PaymentconfirmationReceipt.Doc...
5d78ff6a171210e8f566ec2dca0390a7
VirusTotal
Malware
powershell
AutoRuns
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
buffers extracted
Creates shortcut
Creates executable files
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
AppData folder
malicious URLs
AntiVM_Disk
WriteConsoleW
IP Check
VM Disk Size Check
Windows
ComputerName
Cryptographic key
crashed
1
Keyword trend analysis
×
Info
×
http://api.ipify.org/
2
Info
×
api.ipify.org(184.72.229.11)
23.21.126.66
1
Info
×
ET POLICY External IP Lookup api.ipify.org
15.4
M
26
SFPark
2703
2020-11-10 11:01
DAYLL.exe
1b557b166ddf21da002086de783f4aa5
VirusTotal
Malware
Report
suspicious privilege
buffers extracted
unpack itself
malicious URLs
sandbox evasion
ComputerName
Remote Code Execution
DNS
crashed
1
Info
×
121.101.185.130
1
Info
×
ET CNC Feodo Tracker Reported CnC Server group 3
7.4
M
54
admin
2704
2020-11-10 11:02
https://cape-eye.co.za/stubs.e...
9adab0ce1e56a2d28e33b703d77d6ed2
Dridex
VirusTotal
Malware
Code Injection
RWX flags setting
unpack itself
Windows utilities
Tofsee
Windows
2
Info
×
cape-eye.co.za(165.73.82.169) - malware
165.73.82.169 - suspicious
3
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
ET JA3 Hash - Possible Malware - Unknown traffic associated with Dridex
2.8
admin
2705
2020-11-10 11:03
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
2706
2020-11-10 11:13
ac.exe
57b6df6c7734f3137ef83d57855c82ba
VirusTotal
Malware
AutoRuns
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
ICMP traffic
unpack itself
malicious URLs
Windows
Cryptographic key
3
Info
×
agentpurple.ac.ug() - mailcious
agentttt.ac.ug(79.134.225.40) - mailcious
79.134.225.40 - suspicious
11.4
M
24
admin
2707
2020-11-10 11:42
ac.exe
57b6df6c7734f3137ef83d57855c82ba
VirusTotal
Malware
AutoRuns
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Cryptographic key
3
Info
×
agentpurple.ac.ug() - mailcious
agentttt.ac.ug(79.134.225.40) - mailcious
79.134.225.40 - suspicious
10.4
M
38
admin
2708
2020-11-10 12:23
ac.exe
57b6df6c7734f3137ef83d57855c82ba
VirusTotal
Malware
AutoRuns
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Cryptographic key
3
Info
×
agentpurple.ac.ug() - mailcious
agentttt.ac.ug(79.134.225.40) - mailcious
79.134.225.40 - suspicious
10.4
M
38
admin
2709
2020-11-10 12:38
ac.exe
57b6df6c7734f3137ef83d57855c82ba
VirusTotal
Malware
AutoRuns
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
ICMP traffic
unpack itself
malicious URLs
Windows
Cryptographic key
3
Info
×
agentpurple.ac.ug() - mailcious
agentttt.ac.ug(79.134.225.40) - mailcious
79.134.225.40 - suspicious
11.2
M
38
admin
2710
2020-11-10 12:46
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
2711
2020-11-10 12:48
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
2712
2020-11-10 12:50
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
2713
2020-11-10 12:52
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
2714
2020-11-10 12:59
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
2715
2020-11-10 13:02
5.exe
f139bcd08ad8da406f7dd25411d1c9b3
VirusTotal
Malware
unpack itself
malicious URLs
2.8
M
59
admin
First
Previous
181
182
183
184
185
186
187
188
189
190
Next
Last
Total : 48,289cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword