Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
49006
2024-10-20 09:10
cred64.dll
952462865104033f09609d6d6ab412f8
Generic Malware
Malicious Library
UPX
Antivirus
PE File
DLL
PE64
OS Processor Check
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Malware
Cryptocurrency wallets
Cryptocurrency
powershell
PDB
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
sandbox evasion
installed browsers check
Windows
Browser
ComputerName
DNS
Cryptographic key
Software
1
Keyword trend analysis
×
Info
×
http://176.111.174.140/t9bdjZsL2/index.php
1
Info
×
176.111.174.140 - malware
9.6
M
47
ZeroCERT
49007
2024-10-20 09:12
office.exe
27b4efd1330dbb0c4e0a13836c9878c5
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
3.0
M
67
ZeroCERT
49008
2024-10-20 09:12
yugozxcvb.doc
308fb401507bd635fba139b2394c46e6
MS_RTF_Obfuscation_Objects
RTF File
doc
VirusTotal
Malware
RWX flags setting
exploit crash
Exploit
crashed
2.8
M
34
ZeroCERT
49009
2024-10-20 09:14
ppviral.exe
25c0b750762fcb0464fcac375a6dfed1
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
3.0
M
66
ZeroCERT
49010
2024-10-20 09:15
shell.exe
390c469e624b980db3c1adff70edb6dd
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
DNS
1
Info
×
13.58.157.220
3.6
M
67
ZeroCERT
49011
2024-10-20 09:17
shell.ps1
8b5569d5eade5245351fe555ea35463d
Generic Malware
Antivirus
PE File
DLL
PE32
.NET DLL
VirusTotal
Malware
Creates executable files
unpack itself
Windows utilities
AppData folder
Windows
Cryptographic key
3.8
28
ZeroCERT
49012
2024-10-20 09:17
Protectedformyman.exe
870025e332dfcfb4bd089bf2151388ff
Generic Malware
Admin Tool (Sysinternals etc ...)
UPX
PE File
PE32
VirusTotal
Malware
buffers extracted
RWX flags setting
unpack itself
Windows
crashed
3.2
M
52
ZeroCERT
49013
2024-10-20 09:19
donut.exe
2a516c444620354c81fd32ef1b498d1b
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
1.4
M
60
ZeroCERT
49014
2024-10-20 09:19
shell.exe
95ce375ef761921a82f68524f8b4768a
Metasploit
Meterpreter
Generic Malware
PE File
PE64
VirusTotal
Malware
crashed
2.6
M
62
ZeroCERT
49015
2024-10-20 09:21
msf.exe
38706270e5b50447cf093d352d620faa
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
DNS
1
Info
×
121.40.98.24
3.6
M
66
ZeroCERT
49016
2024-10-20 09:21
1223.exe
5947b96cc629ae7adec0e0878109a4a0
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
3.0
M
61
ZeroCERT
49017
2024-10-20 09:23
tetete.bin
24ffc25774a6e70820c26369c379b50c
PE File
.NET EXE
PE32
VirusTotal
Malware
MachineGuid
Check memory
Checks debugger
unpack itself
Check virtual network interfaces
1
Info
×
valseg.com.br(177.70.21.63) - malware
2.6
M
56
ZeroCERT
49018
2024-10-20 09:23
mce.exe
f372e6a6392dea339a61c8badfa4786e
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
DNS
1
Info
×
3.6.115.182
3.6
M
64
ZeroCERT
49019
2024-10-20 09:25
meshlazem2l024.exe
18882f86bb76cdaf810de14df1aa719d
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
3.0
M
67
ZeroCERT
49020
2024-10-20 09:25
system404.exe
5cf4fd83c632025a479544de58d05c7e
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
DNS
1
Info
×
147.185.221.19
3.6
M
65
ZeroCERT
First
Previous
3261
3262
3263
3264
3265
3266
3267
3268
3269
3270
Next
Last
Total : 49,283cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
