Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
49126
2024-10-24 09:54
wlanext.exe
1bce82ea786776f80c8ccb92ad160ede
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
3.0
43
ZeroCERT
49127
2024-10-24 09:58
client.exe
a980fcec360fbc71df61ffd79543950f
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.0
66
ZeroCERT
49128
2024-10-24 09:58
Client-built.exe
82222cff36f2c338159b23a7f18a4815
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.0
56
ZeroCERT
49129
2024-10-24 09:59
부동산 임대차 계약서.pdf.lnk
ac9ab7765b8127f1fbb633cd1209ebb6
Generic Malware
AntiDebug
AntiVM
Lnk Format
GIF Format
VirusTotal
Malware
Code Injection
Check memory
Creates shortcut
RWX flags setting
unpack itself
suspicious process
Interception
1
Keyword trend analysis
×
Info
×
http://olkimj.online/shiba/jegil/sungreen2.php
1
Info
×
olkimj.online(47.244.44.175)
4.6
18
ZeroCERT
49130
2024-10-24 10:00
k4q.exe
30871d0e0185fcffd2d9452ffdd456f6
Malicious Library
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
Check memory
Checks debugger
DNS
1
Info
×
143.198.137.110
2.8
39
ZeroCERT
49131
2024-10-24 10:06
LDvar.exe
2d7b09cd5f12fb6a3fc07e269a639051
Malicious Library
VMProtect
UPX
PE File
ftp
PE32
VirusTotal
Malware
unpack itself
DNS
1
Keyword trend analysis
×
Info
×
http://154.44.26.68/BOT/Var
1
Info
×
154.44.26.68
4.4
37
ZeroCERT
49132
2024-10-24 10:10
wlanext.exe
0369d0934ddf416abc3f1434d0a8742d
UPX
PE File
PE32
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Check memory
Checks debugger
unpack itself
Windows
Browser
Email
ComputerName
Cryptographic key
Software
crashed
6.0
44
ZeroCERT
49133
2024-10-24 10:11
RuntimeBroker.exe
2a4e004bdf31b4b54760e436bfdadd52
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.0
52
ZeroCERT
49134
2024-10-24 10:13
Gorebox%20ModMenu%201.2.0.exe
1c1a86dad78326429577ab0b7b7b5858
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.0
55
ZeroCERT
49135
2024-10-24 10:15
chrome_93.exe
ce897ba6bd72d2247b6153e1ed751b25
Themida
PE File
PE64
VirusTotal
Malware
Windows
crashed
2.6
47
ZeroCERT
49136
2024-10-24 10:22
wlanext.exe
a4d92d023f0158e3c7107def757641ae
Malicious Library
UPX
PE File
PE32
MZP Format
VirusTotal
Malware
Checks debugger
RWX flags setting
unpack itself
Interception
DNS
1
Info
×
103.161.133.169
4.8
45
ZeroCERT
49137
2024-10-24 10:23
setup3.exe
f45a742212418d4e6134e92289008093
Malicious Library
UPX
PE File
PE32
OS Processor Check
unpack itself
0.8
ZeroCERT
49138
2024-10-24 10:24
KtbStW9f03G3QbW.exe
7578316e563e8a4a2983ae041a5fff39
Generic Malware
Malicious Library
Antivirus
PWS
SMTP
KeyLogger
AntiDebug
AntiVM
PE File
.NET EXE
PE32
VirusTotal
Malware
PDB
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
Creates shortcut
unpack itself
Check virtual network interfaces
suspicious process
WriteConsoleW
IP Check
Windows
ComputerName
DNS
Cryptographic key
DDNS
1
Info
×
checkip.dyndns.org(132.226.247.73)
1
Info
×
ET INFO External IP Lookup Domain in DNS Query (checkip .dyndns .org)
10.4
22
ZeroCERT
49139
2024-10-24 10:24
Discord.exe
37ca66a26417472f965c372aebeb76a3
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.0
59
ZeroCERT
49140
2024-10-24 10:27
get.php
8b22389dc5c1fb6587b89608e2de8bc6
Generic Malware
UPX
PE File
.NET EXE
PE32
VirusTotal
Malware
Checks debugger
Creates executable files
unpack itself
AppData folder
WriteConsoleW
2.8
61
ZeroCERT
First
Previous
3271
3272
3273
3274
3275
3276
3277
3278
3279
3280
Next
Last
Total : 49,283cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
