Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
6601
2023-12-14 19:05
lm.exe
fd1ec4e0dd8213b4b7fc33259acea631
Malicious Library
Malicious Packer
UPX
PE32
PE File
OS Processor Check
Browser Info Stealer
Malware download
VirusTotal
Malware
Cryptocurrency wallets
Cryptocurrency
Malicious Traffic
Check memory
buffers extracted
Collect installed applications
installed browsers check
Ransomware
Lumma
Stealer
Browser
ComputerName
Firmware
1
Keyword trend analysis
×
Info
×
http://crudeleavelegendew.fun/api
2
Info
×
crudeleavelegendew.fun(172.67.207.100)
172.67.207.100
2
Info
×
ET MALWARE [ANY.RUN] Win32/Lumma Stealer Exfiltration
ET MALWARE [ANY.RUN] Win32/Lumma Stealer Check-In
7.4
M
52
ZeroCERT
6602
2023-12-14 19:05
upsync.exe
a5b4a20040379236d168fa0547598a54
Generic Malware
PE File
PE64
VirusTotal
Malware
unpack itself
Check virtual network interfaces
DNS
1
Info
×
66.228.60.47 - malware
3.0
M
37
ZeroCERT
6603
2023-12-14 19:03
Syences.exe
f0207a4a17b47cba7d87142363b12477
Malicious Library
.NET framework(MSIL)
UPX
PE32
PE File
.NET EXE
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.4
M
55
ZeroCERT
6604
2023-12-14 19:03
demon.exe
e402b4d496e16fb8e2fc44bf12c9cc4e
Generic Malware
PE File
PE64
VirusTotal
Malware
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
3.0
M
37
ZeroCERT
6605
2023-12-14 19:01
zil2.exe
1115a969720be5ea1206f9da3d991398
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.6
M
36
ZeroCERT
6606
2023-12-14 19:01
ekk5.exe
8d2033a5f012e0a7273aec14218639ec
Malicious Packer
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.0
M
24
ZeroCERT
6607
2023-12-14 18:58
zil4.exe
8b56bbd451bb021cbab8c83610b80761
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
36
ZeroCERT
6608
2023-12-14 18:58
zil5.exe
448c002a1a5246c0ab3231d507c9bb8d
Malicious Packer
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.0
21
ZeroCERT
6609
2023-12-14 18:56
spring.jar
ca4d1b7b3cf3bf97db02639987bcefd4
ZIP Format
VirusTotal
Malware
Check memory
RWX flags setting
unpack itself
Windows utilities
Check virtual network interfaces
Windows
DNS
crashed
1
Info
×
101.42.164.92 - malware
5.4
M
40
ZeroCERT
6610
2023-12-14 18:56
svchost1.exe
70087277fa67c53783f5cbe4022bd2d1
Malicious Library
UPX
PE32
PE File
OS Processor Check
VirusTotal
Malware
PDB
Malicious Traffic
DNS
1
Keyword trend analysis
×
Info
×
http://154.92.16.100/Admin/Admin.html
2
Info
×
38.181.25.204
154.92.16.100
1
Info
×
ET HUNTING Rejetto HTTP File Sever Response
2.0
9
ZeroCERT
6611
2023-12-14 18:54
fol1.exe
f81b9c6cc289b618410201320c0443cf
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
39
ZeroCERT
6612
2023-12-14 18:54
filex.exe
2911eb04c29466ee568e1b6e169a4f9d
Malicious Library
Malicious Packer
UPX
PE32
PE File
OS Processor Check
VirusTotal
Malware
Check memory
suspicious TLD
DNS
9
Info
×
bookgames.pw()
moskhoods.pw() - mailcious
bloockflad.pw()
killredls.pw()
dayzilons.pw()
steycools.pw()
revivalsecularas.pw()
taretool.pw()
keewoolas.pw()
1
Info
×
ET DNS Query to a *.pw domain - Likely Hostile
2.2
M
61
ZeroCERT
6613
2023-12-14 18:52
zil1.exe
99bfa0a7bc45274642fce78915adf8d4
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
39
ZeroCERT
6614
2023-12-14 18:52
fol2.exe
9e3b880453d0f37e746383cdec335d56
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.6
M
38
ZeroCERT
6615
2023-12-14 18:50
wai2.exe
191cdc871fedc835c8c9815090c4eddd
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.6
M
36
ZeroCERT
First
Previous
441
442
443
444
445
446
447
448
449
450
Next
Last
Total : 48,289cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword