Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
49381
2024-11-11 10:14
svchost.exe
8911e8d889f59b52df80729faac2c99c
Malicious Library
VMProtect
PE File
PE64
VirusTotal
Malware
unpack itself
3.0
48
ZeroCERT
49382
2024-11-11 10:15
dnlib.exe
7b429fa791c946c645975b58cd0570dc
Generic Malware
Malicious Library
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
AutoRuns
suspicious privilege
Check memory
Checks debugger
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
WriteConsoleW
Firewall state off
Windows
ComputerName
DNS
DDNS
crashed
5
Info
×
fdute32sdajfsda.hopto.org(0.0.0.0) -
dtte48ksk8ds5.hopto.org(194.58.33.172) -
udtte45k8ds5.hopto.org() -
67b8nd9smfu0n8b7ds.hopto.org() -
8n7tgfdsn87dsfu9n.hopto.org() -
1
Info
×
ET POLICY DNS Query to DynDNS Domain *.hopto .org
8.2
55
ZeroCERT
49383
2024-11-11 10:16
MARRON.exe
5640bcf1ea28494be59aecce64c242ad
Browser Login Data Stealer
Generic Malware
Malicious Library
Downloader
Malicious Packer
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
Windows
DNS
DDNS
DoTNet
keylogger
1
Info
×
concilio399.strangled.net(181.141.40.225) -
1
Info
×
ET INFO DYNAMIC_DNS Query to a *.strangled .net Domain
2.6
59
ZeroCERT
49384
2024-11-11 10:18
tpsvcBase.dll
e49624fdefe90d426e67d821094e6b3b
Generic Malware
Malicious Library
UPX
PE File
DLL
PE32
OS Processor Check
VirusTotal
Malware
AutoRuns
Checks debugger
unpack itself
Windows
crashed
2.6
46
ZeroCERT
49385
2024-11-11 10:20
Citatfusk.vbe
6be4a60645b65246db749db5b6e77432
Generic Malware
Antivirus
AntiDebug
AntiVM
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
7.6
20
ZeroCERT
49386
2024-11-11 10:20
s.exe
fda96828c88237f5264f61e93ca429ec
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
PDB
1.4
40
ZeroCERT
49387
2024-11-11 10:22
chrome_130.exe
b6b5c883190b5b3673f37458954688a3
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
unpack itself
2.4
56
ZeroCERT
49388
2024-11-11 10:22
hello.exe
69d1c11ae24884ea55ab39787853ad0c
PE File
.NET EXE
PE32
VirusTotal
Malware
MachineGuid
Check memory
Checks debugger
unpack itself
2.4
58
ZeroCERT
49389
2024-11-11 10:24
comehomeconstraints.vbs
83f0ff3bb1895359398311cc564f6f51
VirusTotal
Malware
DNS
crashed
1
Info
×
paste.ee(172.67.187.200) -
1
Info
×
ET INFO Pastebin-like Service Domain in DNS Lookup (paste .ee)
0.8
10
ZeroCERT
49390
2024-11-11 10:26
xwo.exe
7949220a0b341111716a81695324be27
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
1.8
51
ZeroCERT
49391
2024-11-11 10:26
tartarises.vbs
4db4ffb8ea90f92efe568ff54e54c902
Generic Malware
Antivirus
AntiDebug
AntiVM
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
7.8
5
ZeroCERT
49392
2024-11-11 10:28
MONDAYconstraints.vbs
590ddf122e578bbc4d925c1df8a8acbf
VirusTotal
Malware
DNS
1
Info
×
paste.ee(172.67.187.200) -
1
Info
×
ET INFO Pastebin-like Service Domain in DNS Lookup (paste .ee)
0.8
20
ZeroCERT
49393
2024-11-11 10:29
glued.hta
d588b40f7fbf15af9f1a4af0fc7a1cca
Generic Malware
Antivirus
PowerShell
VirusTotal
Malware
powershell
suspicious privilege
Check memory
Checks debugger
Creates shortcut
unpack itself
Check virtual network interfaces
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
1
Info
×
armanayegh.com(185.94.96.102) -
5.6
31
ZeroCERT
49394
2024-11-11 10:31
bxn.exe
63399c74c5dda6fa8276ded35b5118b9
HermeticWiper
Admin Tool (Sysinternals etc ...)
UPX
Malicious Library
Javascript_Blob
PE File
PE32
JPEG Format
PNG Format
icon
MSOffice File
VirusTotal
Malware
Check memory
Checks debugger
RWX flags setting
unpack itself
AppData folder
Ransomware
crashed
2
Info
×
safe.ywxww.net(60.191.236.246) -
icafe8.kf5.com(106.75.91.144) -
4.0
50
ZeroCERT
49395
2024-11-13 13:57
clip.dll
0d3418372c854ee228b78e16ea7059be
Amadey
Generic Malware
Malicious Library
UPX
PE File
DLL
PE32
OS Processor Check
VirusTotal
Malware
Checks debugger
unpack itself
DNS
1
Info
×
185.215.113.209
3.4
55
ZeroCERT
First
Previous
3291
3292
3293
3294
3295
Last
Total : 49,422cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
