Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
8386
2023-12-14 19:16
ekk1.exe
10c118856dd7ca8b8bf9cfbeafaa52e2
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.4
M
46
ZeroCERT
8387
2023-12-14 19:16
zil3.exe
129c9feef30f2b990141cff971e52a0e
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
34
ZeroCERT
8388
2023-12-14 19:14
agent.exe
ca2de368c8a4930ce09986cd9f9f2280
Malicious Library
Malicious Packer
UPX
PE File
PE64
OS Processor Check
VirusTotal
Malware
MachineGuid
unpack itself
Tofsee
ComputerName
2
Info
×
cs.lvsehacker.com(104.21.59.67)
172.67.217.152
1
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
1.6
M
15
ZeroCERT
8389
2023-12-14 19:14
wai1.exe
c3b81b17438502e889673d6d4090ce4d
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.4
M
41
ZeroCERT
8390
2023-12-14 19:12
wai4.exe
1c4ec8da3de452e22419c95bac53846c
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
39
ZeroCERT
8391
2023-12-14 19:12
wai3.exe
07eba257f3c68d1effd1704ad3bdf746
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
35
ZeroCERT
8392
2023-12-14 19:10
ekk3.exe
ef6b878516a8dbc3593a44e6c1d3d14c
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
38
ZeroCERT
8393
2023-12-14 19:09
Symbloa.dll
e55eb7a2b596ee04a0789a06b7d55db8
PE File
DLL
PE64
VirusTotal
Malware
Checks debugger
unpack itself
1.4
M
21
ZeroCERT
8394
2023-12-14 19:07
fol5.exe
220427ccd450638df243193a8ba34f23
Malicious Packer
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
2
Info
×
113.52.134.114 - malware
66.228.60.47 - malware
4.0
M
23
ZeroCERT
8395
2023-12-14 19:07
ekk2.exe
dc641ffeec47fc349d52339107b98dc5
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.8
M
40
ZeroCERT
8396
2023-12-14 19:05
lm.exe
fd1ec4e0dd8213b4b7fc33259acea631
Malicious Library
Malicious Packer
UPX
PE32
PE File
OS Processor Check
Browser Info Stealer
Malware download
VirusTotal
Malware
Cryptocurrency wallets
Cryptocurrency
Malicious Traffic
Check memory
buffers extracted
Collect installed applications
installed browsers check
Ransomware
Lumma
Stealer
Browser
ComputerName
Firmware
1
Keyword trend analysis
×
Info
×
http://crudeleavelegendew.fun/api
2
Info
×
crudeleavelegendew.fun(172.67.207.100)
172.67.207.100
2
Info
×
ET MALWARE [ANY.RUN] Win32/Lumma Stealer Exfiltration
ET MALWARE [ANY.RUN] Win32/Lumma Stealer Check-In
7.4
M
52
ZeroCERT
8397
2023-12-14 19:05
upsync.exe
a5b4a20040379236d168fa0547598a54
Generic Malware
PE File
PE64
VirusTotal
Malware
unpack itself
Check virtual network interfaces
DNS
1
Info
×
66.228.60.47 - malware
3.0
M
37
ZeroCERT
8398
2023-12-14 19:03
Syences.exe
f0207a4a17b47cba7d87142363b12477
Malicious Library
.NET framework(MSIL)
UPX
PE32
PE File
.NET EXE
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
2.4
M
55
ZeroCERT
8399
2023-12-14 19:03
demon.exe
e402b4d496e16fb8e2fc44bf12c9cc4e
Generic Malware
PE File
PE64
VirusTotal
Malware
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
3.0
M
37
ZeroCERT
8400
2023-12-14 19:01
zil2.exe
1115a969720be5ea1206f9da3d991398
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.6
M
36
ZeroCERT
First
Previous
551
552
553
554
555
556
557
558
559
560
Next
Last
Total : 50,084cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
