Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
6451
2024-08-19 14:36
DownYGX.exe
36f62b7cdf6f360b0eec74c5a371a102
CoinMiner
Emotet
AutoIt
Generic Malware
UPX
Malicious Library
Malicious Packer
PE File
PE32
DLL
MSOffice File
OS Processor Check
VirusTotal
Malware
suspicious privilege
Check memory
Checks debugger
Creates executable files
unpack itself
AppData folder
WriteConsoleW
Tofsee
1
Keyword trend analysis
×
Info
×
https://static.yungengxin.com/Soft/Download/Standard_x64_2021.8.15.15832.zip
2
Info
×
static.yungengxin.com(36.249.92.207)
42.177.83.87
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
5.4
M
48
ZeroCERT
6452
2024-08-19 14:35
TMS_C020.exe
2fea7433bc9da61258ef5e0856271420
Malicious Library
UPX
PE File
DllRegisterServer
dll
PE32
MZP Format
VirusTotal
Malware
unpack itself
crashed
1.8
M
11
ZeroCERT
6453
2024-08-19 14:33
DownYB.exe
e9eac28e845143c87b8d4ba752fd9124
CoinMiner
AutoIt
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
3.0
M
53
ZeroCERT
6454
2024-08-19 14:32
rootup.exe
62a18cdbe8e50b650590b503f34fd657
CoinMiner
AutoIt
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Check memory
Checks debugger
2.6
M
53
ZeroCERT
6455
2024-08-19 14:31
Pafool.exe
34c0ec62ad1ee616d73fcc2fa7ac2c05
Generic Malware
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
PDB
Tofsee
crashed
1
Keyword trend analysis
×
Info
×
https://bitbucket.org/fcsdcvscvc/sadcasdv/raw/289495c056fb31bf0c7eabfaa90ac7dd03d83555/pozoranchik
2
Info
×
bitbucket.org(104.192.140.26) - malware
104.192.140.24
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
1.2
M
28
ZeroCERT
6456
2024-08-19 14:30
dbzinifix.exe
54fb16a53cf14d68db5111ed6530251d
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Checks debugger
2.6
M
43
ZeroCERT
6457
2024-08-19 14:29
66bddfcb52736_vidar.exe
e8e3bda68ae03ea279e5030f8431f6e9
PE File
.NET EXE
PE32
VirusTotal
Malware
PDB
Check memory
Checks debugger
unpack itself
ComputerName
2.4
M
27
ZeroCERT
6458
2024-08-19 14:28
Downcqhz.exe
abe1acbaee58d0bedb308fd03714d9d0
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Checks debugger
Windows
2
Keyword trend analysis
×
Info
×
http://wieie.cn:8765/Down/List - rule_id: 40515
http://wieie.cn:8765/Down/List
2
Info
×
wieie.cn(58.23.215.23) - malware
58.23.215.23 - malware
1
Info
×
ET POLICY Autoit Windows Automation tool User-Agent in HTTP Request - Possibly Hostile
1
Info
×
http://wieie.cn:8765/Down/List
2.0
M
35
ZeroCERT
6459
2024-08-19 14:27
NetMaster_Client.exe
9c4a2a98a09549e8175607a271e202bf
Generic Malware
Malicious Library
Downloader
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
PDB
1.2
M
34
ZeroCERT
6460
2024-08-19 14:26
cvef.exe
5b24b568922198941e4bd8f8c7ac35c8
Generic Malware
Malicious Library
Downloader
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
Checks debugger
Creates executable files
Tofsee
1
Keyword trend analysis
×
Info
×
https://bitbucket.org/fcsdcvscvc/sadcasdv/downloads/MessageBox.exe
2
Info
×
bitbucket.org(104.192.140.26) - malware
104.192.140.25
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
1.4
M
14
ZeroCERT
6461
2024-08-19 14:25
66bf6c17b76df_file.exe
2dc4f429bb5eab87e58f960d961591d8
Malicious Library
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
PDB
RCE
2.2
M
49
ZeroCERT
6462
2024-08-19 14:25
TMS_AU003.exe
c010213e251fe238f0d14997e095ecd1
Malicious Library
Downloader
Admin Tool (Sysinternals etc ...)
UPX
PE File
DllRegisterServer
dll
PE32
MZP Format
OS Processor Check
VirusTotal
Malware
Check memory
unpack itself
crashed
2.0
M
5
ZeroCERT
6463
2024-08-19 14:24
DarkPacked.exe
6446245c985087b919aa69304d1a8cac
Generic Malware
Malicious Library
Admin Tool (Sysinternals etc ...)
Malicious Packer
UPX
PE File
PE32
MZP Format
OS Processor Check
PE64
VirusTotal
Malware
Check memory
Checks debugger
WMI
Creates executable files
unpack itself
Windows utilities
suspicious process
AppData folder
Windows
ComputerName
crashed
5.6
M
15
ZeroCERT
6464
2024-08-19 14:22
deluuvip.exe
8d9995faeab9942de05f4fcd833e0577
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Checks debugger
unpack itself
sandbox evasion
Browser
3.8
M
44
ZeroCERT
6465
2024-08-19 14:21
pcstoryrestart.exe
b69808cf234575a70239f8cfde03d77d
CoinMiner
AutoIt
Generic Malware
UPX
PE File
PE32
VirusTotal
Malware
Check memory
Checks debugger
sandbox evasion
3.0
M
40
ZeroCERT
First
Previous
431
432
433
434
435
436
437
438
439
440
Next
Last
Total : 53,735cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
