Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
4486
2024-11-22 15:22
ttl.exe
93517c6eb21cd65e329b0acd9f6db5af
Gen1
Generic Malware
Malicious Library
UPX
Anti_VM
PE64
PE File
OS Processor Check
DLL
ZIP Format
VirusTotal
Malware
Check memory
Creates executable files
1.2
12
ZeroCERT
4487
2024-11-22 15:18
Wait.exe
bd64510b38cee59e4df95fe526d12a8c
Malicious Library
.NET EXE
PE32
PE File
VirusTotal
Malware
PDB
MachineGuid
Check memory
Checks debugger
unpack itself
2.2
30
ZeroCERT
4488
2024-11-22 15:18
winnit.exe
c4e558e3ae2abda535f3bcf85eb36e1e
Generic Malware
Malicious Library
UPX
PE32
PE File
OS Processor Check
VirusTotal
Malware
Checks debugger
buffers extracted
unpack itself
3
Info
×
www.wwwzbk.app(202.95.12.144)
www.fichier-nt-pdf.store(84.32.84.32)
www.sodatool.site()
4.0
31
ZeroCERT
4489
2024-11-22 15:16
FACTURA09876567000.bat
f4a43c4e63d1bc8908819fc2b3b6a83b
UPX
PE32
PE File
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
AutoRuns
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates executable files
unpack itself
AppData folder
AntiVM_Disk
VM Disk Size Check
installed browsers check
Windows
Browser
Email
ComputerName
DNS
Software
1
Info
×
87.120.113.235
11.4
50
ZeroCERT
4490
2024-11-22 15:16
SillyShelf.exe
fecd099f9b8d9500d7199a1054397e3f
Emotet
Gen1
Generic Malware
Malicious Library
UPX
Malicious Packer
Admin Tool (Sysinternals etc ...)
PE32
PE File
MZP Format
PE64
DLL
DllRegisterServer
dll
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
Creates executable files
unpack itself
suspicious process
AppData folder
WriteConsoleW
ComputerName
4.0
37
ZeroCERT
4491
2024-11-22 15:14
Winsvc.exe
3e4461418de7a12e7951ccf51fe4d4d3
Malicious Library
PE64
PE File
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.4
50
ZeroCERT
4492
2024-11-22 15:13
seemybestoptionforentiretimegi...
e6859034a42f217800b6bf0980e93848
MS_RTF_Obfuscation_Objects
RTF File
doc
VirusTotal
Malware
buffers extracted
exploit crash
unpack itself
Exploit
DNS
crashed
1
Info
×
66.63.187.231
5.2
38
ZeroCERT
4493
2024-11-22 15:12
caspol.exe
74061922f1e78c237a66d12a15a18181
Generic Malware
Malicious Library
.NET framework(MSIL)
Antivirus
.NET EXE
PE32
PE File
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
7.6
52
ZeroCERT
4494
2024-11-22 15:12
caspol.exe
66b03d1aff27d81e62b53fc108806211
LokiBot
Generic Malware
Malicious Library
.NET framework(MSIL)
Antivirus
Socket
PWS
DNS
AntiDebug
AntiVM
.NET EXE
PE32
PE File
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
powershell
suspicious privilege
MachineGuid
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
powershell.exe wrote
suspicious process
malicious URLs
WriteConsoleW
installed browsers check
Windows
Browser
Email
ComputerName
DNS
Cryptographic key
Software
1
Info
×
94.156.177.41
16.4
37
ZeroCERT
4495
2024-11-22 15:11
samat.exe
f74588fc6a3342296cbb881d87c17300
Gen1
Generic Malware
Malicious Library
UPX
Malicious Packer
Anti_VM
PE64
PE File
OS Processor Check
DLL
ZIP Format
VirusTotal
Malware
Check memory
Checks debugger
Creates executable files
unpack itself
Windows utilities
Windows
2.4
25
ZeroCERT
4496
2024-11-22 15:10
FunnyJellyfish.exe
e1cf72329542de8b3004517ee07d8371
Emotet
Gen1
Generic Malware
Malicious Library
UPX
Malicious Packer
Admin Tool (Sysinternals etc ...)
PE32
PE File
MZP Format
PE64
OS Processor Check
DLL
DllRegisterServer
dll
VirusTotal
Malware
Check memory
Checks debugger
Creates executable files
unpack itself
suspicious process
AppData folder
WriteConsoleW
ComputerName
3.6
18
ZeroCERT
4497
2024-11-22 15:10
chrome_133.exe
926dd9e88e2ac846eaf3c23ef8208cdf
Client SW User Data Stealer
ftp Client
info stealer
Generic Malware
Malicious Library
UPX
Socket
Http API
PWS
DNS
AntiDebug
AntiVM
PE32
PE File
OS Processor Check
Code Injection
Check memory
buffers extracted
unpack itself
malicious URLs
ComputerName
7.6
ZeroCERT
4498
2024-11-22 15:07
L.exe
fa351b72ffb13bfc332a25a57a7f075f
Themida
Admin Tool (Sysinternals etc ...)
UPX
PE32
PE File
Checks debugger
unpack itself
Checks Bios
Detects VMWare
VMware
anti-virtualization
Windows
crashed
4.2
ZeroCERT
4499
2024-11-22 15:05
file.exe
666248c216a3f63828f739839230f9f6
Generic Malware
Antivirus
.NET EXE
PE32
PE File
VirusTotal
Malware
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
Creates executable files
unpack itself
Check virtual network interfaces
suspicious process
Windows
ComputerName
DNS
Cryptographic key
1
Info
×
176.113.115.178
8.0
21
ZeroCERT
4500
2024-11-22 15:05
NetPower.exe
e1e582720d4ca2378f941886522dd8d4
UPX
PE32
PE File
VirusTotal
Malware
Check memory
unpack itself
sandbox evasion
ComputerName
3.4
43
ZeroCERT
First
Previous
291
292
293
294
295
296
297
298
299
300
Next
Last
Total : 53,960cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
