Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
49186
2024-10-27 11:51
6615.exe
6927bb9f5d625a5dadc6969cfe976fe2
Malicious Packer
UPX
PE File
PE32
VirusTotal
Malware
unpack itself
DNS
1
Info
×
45.202.35.85 -
3.6
63
ZeroCERT
49187
2024-10-27 11:53
Security.exe
f8862a71544afeafbd2ed09e19e33b50
Vidar
Generic Malware
Malicious Library
Malicious Packer
UPX
Antivirus
PE File
.NET EXE
PE32
DLL
OS Processor Check
PE64
.NET DLL
VirusTotal
Malware
AutoRuns
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
Cryptographic key
9.2
56
ZeroCERT
49188
2024-10-27 11:53
fridayfileMPDW-constraints.vbs
92361fe6feb25c67dae9dfefee911404
VirusTotal
Malware
DNS
1
Info
×
paste.ee(172.67.187.200) -
1
Info
×
ET INFO Pastebin-like Service Domain in DNS Lookup (paste .ee)
0.4
5
ZeroCERT
49189
2024-10-27 11:55
wzcstatus.exe
78fa179ebcbd001b575b3baa06ff3ab2
PE File
.NET EXE
PE32
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.6
59
ZeroCERT
49190
2024-10-27 11:55
ngown.exe
f77f55496b53b40da142f51f87e986b2
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Check memory
Checks debugger
unpack itself
Browser
Email
ComputerName
Software
crashed
5.0
47
ZeroCERT
49191
2024-10-27 11:56
fortpriv5.exe
4c428e14cf5fc2c5e54ba377389c8253
Malicious Library
Downloader
VMProtect
PE File
PE64
VirusTotal
Malware
2.2
44
ZeroCERT
49192
2024-10-27 11:56
XClient.exe
4b336f0e5c5b9d47feef5cbe4a9d6f31
Antivirus
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
suspicious privilege
MachineGuid
Check memory
Checks debugger
unpack itself
AntiVM_Disk
VM Disk Size Check
ComputerName
3.8
49
ZeroCERT
49193
2024-10-27 11:58
DK.exe
14988e9d35a0c92435297f7b2821dc60
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
unpack itself
DNS
1
Info
×
185.196.11.237
3.4
60
ZeroCERT
49194
2024-10-27 12:00
requirements.exe
00bcef19c1d757d272439bb4a427e2c2
Antivirus
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
suspicious privilege
MachineGuid
Check memory
Checks debugger
unpack itself
AntiVM_Disk
VM Disk Size Check
Windows
ComputerName
Cryptographic key
4.0
59
ZeroCERT
49195
2024-10-27 12:02
clip64.dll
9fcac34b8162651f29288e1ffff9394d
Amadey
Generic Malware
Malicious Library
UPX
PE File
DLL
PE32
OS Processor Check
VirusTotal
Malware
Checks debugger
unpack itself
DNS
1
Info
×
185.215.113.217
3.4
45
ZeroCERT
49196
2024-10-27 12:05
cred64.dll
af03a0d9fbfcafefa431092f93d37f01
Generic Malware
Malicious Library
UPX
Antivirus
PE File
DLL
PE64
OS Processor Check
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
Cryptocurrency wallets
Cryptocurrency
PDB
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
suspicious process
sandbox evasion
installed browsers check
Windows
Browser
Email
ComputerName
DNS
Cryptographic key
Software
1
Info
×
185.215.113.217
9.6
44
ZeroCERT
49197
2024-10-27 12:07
Snaffler-ruylopez.exe
1af918875c67d204941ec2c8a780e312
Generic Malware
Malicious Library
Malicious Packer
UPX
Code injection
AntiDebug
AntiVM
PE File
PE64
OS Processor Check
VirusTotal
Malware
Code Injection
unpack itself
2.8
37
ZeroCERT
49198
2024-10-27 12:09
clitoritissR.exe
03b6be8fed80988489e171c7092d9541
Generic Malware
Malicious Library
ASPack
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
Cryptocurrency wallets
Cryptocurrency
Check memory
unpack itself
ComputerName
3.2
56
ZeroCERT
49199
2024-10-27 12:12
PowerShell.exe
df4465e6693e489c6db32a427bbd93ec
Antivirus
UPX
PE File
.NET EXE
PE32
OS Processor Check
Lnk Format
GIF Format
VirusTotal
Malware
powershell
AutoRuns
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
Creates executable files
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
AppData folder
AntiVM_Disk
WriteConsoleW
VM Disk Size Check
Windows
ComputerName
8.2
59
ZeroCERT
49200
2024-10-28 10:19
cred.dll
921b0badeaffee860310e6755769337e
Generic Malware
Malicious Library
UPX
Antivirus
PE File
DLL
PE32
OS Processor Check
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
Cryptocurrency wallets
Cryptocurrency
suspicious privilege
MachineGuid
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
suspicious process
sandbox evasion
installed browsers check
Windows
Browser
Email
ComputerName
DNS
Cryptographic key
Software
1
Info
×
185.215.113.217
9.0
33
ZeroCERT
First
Previous
3271
3272
3273
3274
3275
3276
3277
3278
3279
3280
Next
Last
Total : 49,283cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
