Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
8401
2023-12-14 19:01
ekk5.exe
8d2033a5f012e0a7273aec14218639ec
Malicious Packer
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.0
M
24
ZeroCERT
8402
2023-12-14 18:58
zil4.exe
8b56bbd451bb021cbab8c83610b80761
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
36
ZeroCERT
8403
2023-12-14 18:58
zil5.exe
448c002a1a5246c0ab3231d507c9bb8d
Malicious Packer
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.0
21
ZeroCERT
8404
2023-12-14 18:56
spring.jar
ca4d1b7b3cf3bf97db02639987bcefd4
ZIP Format
VirusTotal
Malware
Check memory
RWX flags setting
unpack itself
Windows utilities
Check virtual network interfaces
Windows
DNS
crashed
1
Info
×
101.42.164.92 - malware
5.4
M
40
ZeroCERT
8405
2023-12-14 18:56
svchost1.exe
70087277fa67c53783f5cbe4022bd2d1
Malicious Library
UPX
PE32
PE File
OS Processor Check
VirusTotal
Malware
PDB
Malicious Traffic
DNS
1
Keyword trend analysis
×
Info
×
http://154.92.16.100/Admin/Admin.html
2
Info
×
38.181.25.204
154.92.16.100
1
Info
×
ET HUNTING Rejetto HTTP File Sever Response
2.0
9
ZeroCERT
8406
2023-12-14 18:54
fol1.exe
f81b9c6cc289b618410201320c0443cf
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
39
ZeroCERT
8407
2023-12-14 18:54
filex.exe
2911eb04c29466ee568e1b6e169a4f9d
Malicious Library
Malicious Packer
UPX
PE32
PE File
OS Processor Check
VirusTotal
Malware
Check memory
suspicious TLD
DNS
9
Info
×
bookgames.pw()
moskhoods.pw() - mailcious
bloockflad.pw()
killredls.pw()
dayzilons.pw()
steycools.pw()
revivalsecularas.pw()
taretool.pw()
keewoolas.pw()
1
Info
×
ET DNS Query to a *.pw domain - Likely Hostile
2.2
M
61
ZeroCERT
8408
2023-12-14 18:52
zil1.exe
99bfa0a7bc45274642fce78915adf8d4
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
39
ZeroCERT
8409
2023-12-14 18:52
fol2.exe
9e3b880453d0f37e746383cdec335d56
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.6
M
38
ZeroCERT
8410
2023-12-14 18:50
wai2.exe
191cdc871fedc835c8c9815090c4eddd
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
sandbox evasion
2.6
M
36
ZeroCERT
8411
2023-12-14 18:50
fol4.exe
16d69d752dfb1211e0e67596d59caca1
Malicious Packer
UPX
PE File
PE64
VirusTotal
Malware
buffers extracted
RWX flags setting
Check virtual network interfaces
DNS
1
Info
×
113.52.134.114 - malware
4.2
M
35
ZeroCERT
8412
2023-12-14 16:48
new_image.jpg.exe
d772e2dc4d5e6901bf6fdaba17caa985
Generic Malware
Antivirus
PE32
PE File
DLL
.NET DLL
VirusTotal
Malware
PDB
0.6
7
ZeroCERT
8413
2023-12-14 16:41
new_image.jpg.exe
d772e2dc4d5e6901bf6fdaba17caa985
Generic Malware
Antivirus
PE32
PE File
DLL
.NET DLL
VirusTotal
Malware
PDB
0.6
7
ZeroCERT
8414
2023-12-14 16:40
nj.txt.exe
20f7d231a4c2c00595c943dc7633a24c
PE File
VirusTotal
Malware
0.4
3
ZeroCERT
8415
2023-12-14 13:02
Pikabot.dll
61c58c2bebffb3b3590f24675721fa5b
Malicious Library
UPX
PE32
PE File
DLL
MZP Format
VirusTotal
Malware
2.0
33
ZeroCERT
First
Previous
561
562
563
564
565
566
567
568
569
570
Next
Last
Total : 50,084cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
