Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
44371
2024-05-17 09:40
client.exe
4a603ec4e3c5a21400eaabac7c6401c6
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.0
M
60
ZeroCERT
44372
2024-05-17 09:41
beautifulthingshappenedafterge...
21abbfbb6c333c66250c433aa7311c88
MS_RTF_Obfuscation_Objects
RTF File
doc
VirusTotal
Malware
Malicious Traffic
exploit crash
unpack itself
Tofsee
Exploit
DNS
crashed
2
Keyword trend analysis
×
Info
×
https://paste.ee/d/oaz1A
http://172.234.239.209/50090/imagesHDqualitycheck.png
3
Info
×
paste.ee(104.21.84.67) - mailcious
172.67.187.200 - mailcious
172.234.239.209 - malware
2
Info
×
ET POLICY Pastebin-style Service (paste .ee) in TLS SNI
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
4.2
M
37
ZeroCERT
44373
2024-05-17 09:42
reverse.exe
33d2415134ed49ab055cec7a82892e1d
Metasploit
Meterpreter
Generic Malware
PE64
PE File
VirusTotal
Malware
crashed
2.6
M
63
ZeroCERT
44374
2024-05-17 09:42
nc.exe
1965ab1b3664aac84acb1b6e262b1b7f
NMap
Malicious Library
PE File
PE32
VirusTotal
Malware
PDB
WriteConsoleW
1.6
M
54
ZeroCERT
44375
2024-05-17 09:44
artifact.exe
8b0524ac872303de2ed724eb7e001959
Malicious Library
PE64
PE File
VirusTotal
Malware
RWX flags setting
DNS
crashed
1
Info
×
103.116.247.207
4.0
M
56
ZeroCERT
44376
2024-05-17 09:46
nc.exe
eaffd3bbf68d102d7d7c670c5d2290c5
NMap
Malicious Library
PE File
PE32
VirusTotal
Malware
WriteConsoleW
1.6
M
45
ZeroCERT
44377
2024-05-17 09:49
artifact.exe
215c182097f03fd743386a0707f3fc4a
Malicious Library
PE64
PE File
VirusTotal
Malware
ICMP traffic
RWX flags setting
DNS
1
Info
×
185.74.222.126
4.0
M
62
ZeroCERT
44378
2024-05-17 09:50
2023%E5%8F%B0%E7%A9%8D%E9%9B%B...
dca15445c14d440ea25c0d7fb350c4a3
Client SW User Data Stealer
Gen1
browser
info stealer
Generic Malware
Google
Chrome
User Data
Downloader
Malicious Library
UPX
ASPack
Malicious Packer
Http API
PWS
Code injection
Create Service
Socket
DGA
ScreenShot
Escalate priviledges
Steal credential
S
Browser Info Stealer
VirusTotal
Malware
PDB
Code Injection
Checks debugger
Creates executable files
exploit crash
unpack itself
AppData folder
malicious URLs
installed browsers check
Exploit
Browser
ComputerName
Remote Code Execution
crashed
9.2
M
49
ZeroCERT
44379
2024-05-17 09:51
reverse.exe
94604756b7991e2361c98c1ffd1a50ff
Malicious Packer
PE File
PE32
VirusTotal
Malware
unpack itself
DNS
1
Info
×
79.132.193.215 - mailcious
3.6
M
57
ZeroCERT
44380
2024-05-17 09:53
VFTRACE.dll
4b04772148e2c03c0169a6c64e9f25b9
Gen1
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
DLL
PE32
OS Processor Check
VirusTotal
Malware
PDB
Checks debugger
unpack itself
2.0
M
45
ZeroCERT
44381
2024-05-17 09:55
payload.ps1
6e3e796a5c5aeaf86de6402cece4f536
Generic Malware
Antivirus
VirusTotal
Malware
unpack itself
1.4
M
36
ZeroCERT
44382
2024-05-17 09:57
adduser.exe
510f4e20d3a6e15ac818d7e667bbf300
PE64
PE File
VirusTotal
Malware
Check memory
Windows utilities
suspicious process
WriteConsoleW
Windows
ComputerName
3.2
M
43
ZeroCERT
44383
2024-05-17 09:59
64.exe
e1517885f6c71f7b3dafa6d4610c4762
Metasploit
Meterpreter
Generic Malware
PE64
PE File
VirusTotal
Malware
DNS
crashed
1
Info
×
79.132.193.215 - mailcious
3.2
M
60
ZeroCERT
44384
2024-05-17 10:04
ttt.hta
b5080c0d123ce430f1e28c370a0fa18b
VirusTotal
Malware
crashed
1.0
23
ZeroCERT
44385
2024-05-17 10:12
ttt.hta
b5080c0d123ce430f1e28c370a0fa18b
VirusTotal
Malware
Check memory
RWX flags setting
unpack itself
Tofsee
Interception
ComputerName
1
Keyword trend analysis
×
Info
×
https://brandwizer.co.in/green_pad/wp-content/plugins/custom-post-type-maker/essay/r.php
2
Info
×
brandwizer.co.in(5.9.123.217) - mailcious
5.9.123.217 - mailcious
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
2.6
23
ZeroCERT
First
Previous
2951
2952
2953
2954
2955
2956
2957
2958
2959
2960
Next
Last
Total : 48,320cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword