Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
5371
2021-02-23 15:05
INV-00283928.exe
da357ce2a4dc194143aa9998a8e7454c
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Browser
Email
ComputerName
Software
crashed
keylogger
11.2
M
56
ZeroCERT
5372
2021-02-23 15:05
INV00384929.exe
da357ce2a4dc194143aa9998a8e7454c
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Browser
Email
ComputerName
DNS
Software
crashed
keylogger
12.8
M
56
ZeroCERT
5373
2021-02-23 15:24
mensajeria_system.exe
7d9d8812398eaf9ac0d85e728bbf8637
VirusTotal
Malware
PDB
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
buffers extracted
WMI
unpack itself
Check virtual network interfaces
malicious URLs
IP Check
Tofsee
Windows
ComputerName
Cryptographic key
3
Keyword trend analysis
×
Info
×
http://pastex.pro/b/AEmdBGcmp
http://api.ipify.org/
https://raw.githubusercontent.com/Sangiz1/sz4/main/lkk
8
Info
×
smtp.saleforceconsults.com(208.91.199.225)
pastex.pro(45.148.121.68)
raw.githubusercontent.com(185.199.108.133) - malware
api.ipify.org(54.225.66.103)
208.91.198.143
54.225.66.103
185.199.108.133 - mailcious
45.148.121.68 - malware
3
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET POLICY External IP Lookup api.ipify.org
SURICATA Applayer Detect protocol only one direction
11.8
M
27
ZeroCERT
5374
2021-02-23 15:25
mgLD5CcdJx9YVKl.jpg.exe
dccd2f6a61f8d95552863b537f2b6698
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
Windows utilities
Checks Bios
Detects VirtualBox
suspicious process
malicious URLs
WriteConsoleW
VMware
anti-virtualization
Windows
ComputerName
DNS
Cryptographic key
Software
14.2
M
24
ZeroCERT
5375
2021-02-23 16:29
R011938.exe
da357ce2a4dc194143aa9998a8e7454c
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Browser
Email
ComputerName
Software
crashed
keylogger
11.2
M
56
ZeroCERT
5376
2021-02-23 16:29
obi.exe
a404ba1c876aaf170e18f6b4f39d12b0
VirusTotal
Malware
MachineGuid
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
ComputerName
DNS
1
Info
×
70.35.205.100
10.2
M
49
ZeroCERT
5377
2021-02-23 16:33
R70029883.exe
f57d087472fdeac6df9751ad5d0c0965
Browser Info Stealer
FTP Client Info Stealer
VirusTotal
Email Client Info Stealer
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Browser
Email
ComputerName
Software
crashed
keylogger
11.2
M
59
ZeroCERT
5378
2021-02-23 16:33
Server.exe
98e6c4655b9603d6b34d5ebb046a24f8
VirusTotal
Malware
AutoRuns
Code Injection
Check memory
unpack itself
Windows utilities
suspicious process
AppData folder
malicious URLs
Windows
DNS
2
Info
×
s2010218.f3322.net(58.218.67.253) - mailcious
58.218.67.253 - mailcious
8.6
M
52
ZeroCERT
5379
2021-02-23 18:08
win32.exe
6eb0b153093f20c87934e7ae04b0b5e3
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Cryptographic key
8.2
M
43
ZeroCERT
5380
2021-02-23 18:08
xiaolang.exe
0caf809f267d26d1e1afe21c8d600ed5
VirusTotal
Malware
DNS
1
Info
×
58.218.67.253 - mailcious
3.4
M
48
ZeroCERT
5381
2021-02-23 18:12
xiaolang2.exe
0be6e4217cb2924064d0a368fc9c2291
VirusTotal
Malware
DNS
1
Info
×
58.218.67.253 - mailcious
3.4
M
52
ZeroCERT
5382
2021-02-23 18:29
9UlDK6a8pUmLwnj.exe
c59f71a02c13a01d95bf37c095895748
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
Windows
Cryptographic key
2.2
M
20
ZeroCERT
5383
2021-02-23 18:36
8uZ3jeF7vi0CdbM.exe
17bc24cedb444e05e229b89cb01c2f6a
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
malicious URLs
Windows
Cryptographic key
2.8
M
19
ZeroCERT
5384
2021-02-23 18:37
App.exe
8f891aa36fda88491f2cc68e6e95b297
VirusTotal
Malware
PDB
Check memory
Checks debugger
Creates executable files
unpack itself
AppData folder
malicious URLs
DNS
4.2
M
17
ZeroCERT
5385
2021-02-23 18:40
cosq.exe
5b59e521935e56a03255623df51c1631
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
malicious URLs
Windows
Cryptographic key
7.6
M
18
ZeroCERT
First
Previous
351
352
353
354
355
356
357
358
359
360
Next
Last
Total : 48,354cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword