Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
6841
2021-04-02 10:19
VersiumRR.exe
78cdced17f8cde3357877158ca125e78
VirusTotal
Malware
1.6
M
34
ZeroCERT
6842
2021-04-02 10:19
iabi.exe
9d98cfac482b35090e0604e13699a40c
VirusTotal
Malware
0.6
4
ZeroCERT
6843
2021-04-02 10:19
VersiumR.exe
21ccef2f0c663e5867ee090333b8206e
VirusTotal
Malware
1.2
M
25
ZeroCERT
6844
2021-04-02 10:19
last.sct
a1269f636a62fc84b85d508244db0db5
VirusTotal
Malware
0.6
13
ZeroCERT
6845
2021-04-02 10:20
ret4.exe
9b224a8a1e6e5897e47fee0eb1e21766
VirusTotal
Malware
PDB
1.0
9
ZeroCERT
6846
2021-04-02 10:20
rldr.10.4.exe
81e6dcf2510ffc2400743e912448013f
VirusTotal
Malware
PDB
1.0
6
ZeroCERT
6847
2021-04-02 10:20
r104.exe
d2749c21fa8671e75cd147380ff110e0
VirusTotal
Malware
0.4
6
ZeroCERT
6848
2021-04-02 10:32
r104.exe
d2749c21fa8671e75cd147380ff110e0
VirusTotal
Malware
AutoRuns
Code Injection
Malicious Traffic
Check memory
buffers extracted
Creates executable files
ICMP traffic
unpack itself
Windows utilities
suspicious process
sandbox evasion
Windows
ComputerName
DNS
1
Keyword trend analysis
×
Info
×
https://34.212.193.150/kenichi/aura20b/zero21
2
Info
×
8.8.7.7
34.212.193.150
11.4
6
ZeroCERT
6849
2021-04-02 10:36
VPN_Free.exe
831d4e7f62efecd2fc159074383b965b
AsyncRAT
backdoor
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
Check virtual network interfaces
Windows
DNS
Cryptographic key
crashed
1
Info
×
80.92.205.112
10.2
M
13
ZeroCERT
6850
2021-04-02 10:36
download
22a66ab856e4814d425e6f6819a8fa77
VirusTotal
Malware
Check memory
unpack itself
crashed
1
Keyword trend analysis
×
Info
×
https://pricer.civilta.in/ds/1602.gif
1
Info
×
pricer.civilta.in() - malware
2.8
M
29
ZeroCERT
6851
2021-04-02 10:38
Install_Plugin_x64_x86.exe
ffe3cce3479bb06607d5056e6dbca530
AsyncRAT
backdoor
VirusTotal
Malware
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
Check virtual network interfaces
Windows
DNS
Cryptographic key
1
Info
×
86.107.197.200
11.0
M
29
ZeroCERT
6852
2021-04-02 10:39
VersiumRR.exe
78cdced17f8cde3357877158ca125e78
Browser Info Stealer
VirusTotal
Malware
Cryptocurrency wallets
Cryptocurrency
suspicious privilege
Malicious Traffic
Check memory
Checks debugger
buffers extracted
WMI
heapspray
unpack itself
Checks Bios
Collect installed applications
Detects VirtualBox
Detects VMWare
Check virtual network interfaces
VMware
anti-virtualization
installed browsers check
Ransomware
Windows
Browser
ComputerName
Firmware
DNS
Cryptographic key
crashed
2
Keyword trend analysis
×
Info
×
http://91.214.124.106/
https://api.ip.sb/geoip
3
Info
×
api.ip.sb(172.67.75.172)
104.26.12.31
91.214.124.106
14.6
M
34
ZeroCERT
6853
2021-04-02 10:41
jd1262ru.zip
9da3ac5eeb02e9e4afd27b1744af5c67
PDB
unpack itself
crashed
0.8
M
ZeroCERT
6854
2021-04-02 10:43
.................................
5a0a86f08f57c385df9626f26e1a3bc9
VirusTotal
Malware
Malicious Traffic
exploit crash
unpack itself
Exploit
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://198.23.251.121/networ/reg.exe
1
Info
×
198.23.251.121 - mailcious
4.0
M
22
ZeroCERT
6855
2021-04-02 10:43
VersiumR.exe
21ccef2f0c663e5867ee090333b8206e
VirusTotal
Malware
Buffer PE
suspicious privilege
Code Injection
Check memory
Checks debugger
buffers extracted
unpack itself
crashed
2
Info
×
api.faceit.com(104.17.62.50)
104.17.63.50
6.8
M
25
ZeroCERT
First
Previous
451
452
453
454
455
456
457
458
459
460
Next
Last
Total : 48,289cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword