Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
10111
2023-09-26 17:52
c.exe
697af19045d5835b49c0478fb67468f5
Malicious Library
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
unpack itself
Remote Code Execution
2.0
M
31
ZeroCERT
10112
2023-09-26 17:42
executeInstall.js
fcb124a08ae0351cab33214c2eda395f
VirusTotal
Malware
DNS
1
Info
×
165.22.242.147
2.4
9
ZeroCERT
10113
2023-09-26 15:30
rc
11d10cfdac2a8c8dd30f80d6a2dad667
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://94.131.106.78/BcDx2y/OkJKB - rule_id: 36837
1
Info
×
94.131.106.78 - mailcious
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
1
Info
×
http://94.131.106.78/BcDx2y/OkJKB
4.4
M
yjw
10114
2023-09-26 14:57
rc
11d10cfdac2a8c8dd30f80d6a2dad667
PE File
DLL
PE64
Checks debugger
unpack itself
suspicious process
crashed
1.2
M
yjw
10115
2023-09-26 14:53
rc
11d10cfdac2a8c8dd30f80d6a2dad667
PE File
DLL
PE64
Checks debugger
unpack itself
suspicious process
crashed
1.2
M
yjw
10116
2023-09-26 14:46
ni
e23d0b061c80c22c7d232b6a8e43fa77
PE File
DLL
PE64
Checks debugger
unpack itself
suspicious process
crashed
1.2
M
yjw
10117
2023-09-26 14:13
ni
e23d0b061c80c22c7d232b6a8e43fa77
PE File
DLL
PE64
Checks debugger
unpack itself
suspicious process
crashed
1.2
M
yjw
10118
2023-09-26 13:37
ni
e23d0b061c80c22c7d232b6a8e43fa77
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://88.119.175.199/EtqXJWL/hqmN
1
Info
×
88.119.175.199
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
4.4
M
ZeroCERT
10119
2023-09-26 13:36
te
0c55abf72ac32c1f4364d2beacbc4eb6
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://94.131.106.78/BcDx2y/OkJKB
1
Info
×
94.131.106.78
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
4.4
M
ZeroCERT
10120
2023-09-26 13:36
ni
e23d0b061c80c22c7d232b6a8e43fa77
PE File
DLL
PE64
Checks debugger
suspicious process
crashed
0.8
M
yjw
10121
2023-09-26 13:35
ib
dd77c8ada4a2591da5b34ff8b496f298
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://94.131.106.78/BcDx2y/OkJKB
1
Info
×
94.131.106.78
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
4.2
M
ZeroCERT
10122
2023-09-26 13:35
tuu
d933dc430f8feadf74902c4719033886
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://88.119.175.199/EtqXJWL/hqmN
1
Info
×
88.119.175.199
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
4.4
M
ZeroCERT
10123
2023-09-26 13:34
rc
11d10cfdac2a8c8dd30f80d6a2dad667
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://94.131.106.78/BcDx2y/OkJKB
1
Info
×
94.131.106.78
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
4.4
M
ZeroCERT
10124
2023-09-26 11:35
Jv.xll
f7a95d9853bbf73d695908480fa3ace2
Create Service
Http API
Escalate priviledges
AntiDebug
AntiVM
PE File
DLL
PE64
Malware
suspicious privilege
Code Injection
Malicious Traffic
Check memory
Checks debugger
unpack itself
suspicious process
WriteConsoleW
DNS
crashed
1
Keyword trend analysis
×
Info
×
http://51.195.49.233/dGp9oe/rAoeU0
1
Info
×
51.195.49.233
2
Info
×
ET POLICY curl User-Agent Outbound
ET HUNTING curl User-Agent to Dotted Quad
4.4
ZeroCERT
10125
2023-09-26 11:31
0ea461af5bf18fa9fe0a4945bda2c2...
0ea461af5bf18fa9fe0a4945bda2c2c0
Generic Malware
Malicious Library
UPX
Downloader
Antivirus
.NET framework(MSIL)
Malicious Packer
PE File
PE32
.NET EXE
OS Processor Check
PDB
MachineGuid
Check memory
Checks debugger
unpack itself
1.2
ZeroCERT
First
Previous
671
672
673
674
675
676
677
678
679
680
Next
Last
Total : 50,084cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
