Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
14731
2021-11-05 01:50
common.bytes
bf5460d3d9c1bb2d6b8aa12f3db8b092
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14732
2021-11-05 01:51
gacconfig.bytes
f8a68ae046ae3bf4d09074131f49d9de
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
4.8
guest
14733
2021-11-05 01:51
classscript.bytes
52636e2354ea0e4f6848633556235257
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
5.2
guest
14734
2021-11-05 01:51
gacconfig.bytes
f8a68ae046ae3bf4d09074131f49d9de
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
3.8
guest
14735
2021-11-05 01:53
commonclientdefs.bytes
eb901f00be8d5dac1a9f7902aa3936b0
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
4.8
guest
14736
2021-11-05 01:53
classscript.bytes
52636e2354ea0e4f6848633556235257
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
3.8
guest
14737
2021-11-05 01:53
commoninc.bytes
f48a588b2d239cb5c8ea9ffcfdd8a30b
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
4.2
guest
14738
2021-11-05 01:54
commonclientdefs.bytes
eb901f00be8d5dac1a9f7902aa3936b0
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
3.8
guest
14739
2021-11-05 01:55
common.bytes
bf5460d3d9c1bb2d6b8aa12f3db8b092
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
5.8
guest
14740
2021-11-05 01:56
copyclassfunction.bytes
22c510bcd8c165d4fa0cd64490516c85
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
5.2
guest
14741
2021-11-05 01:56
debuggermgr.bytes
d514dd539951031831c21e3cb400849b
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14742
2021-11-05 01:58
copyclassfunction.bytes
22c510bcd8c165d4fa0cd64490516c85
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14743
2021-11-05 01:59
commoninc.bytes
f48a588b2d239cb5c8ea9ffcfdd8a30b
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.8
guest
14744
2021-11-05 01:59
debuggermgrinc.bytes
d99b84ec646e545c6c3bea4d03cb7d7f
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.2
guest
14745
2021-11-05 01:59
luaprofiler.bytes
32452897194b25b15f27893bf8cd0e99
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
First
Previous
981
982
983
984
985
986
987
988
989
990
Next
Last
Total : 49,447cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
