Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
14821
2021-11-05 02:52
typecheck.bytes
584de4e6b6ec0e0dce154120afeb73af
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14822
2021-11-05 02:52
luaprofiler.bytes
32452897194b25b15f27893bf8cd0e99
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.2
guest
14823
2021-11-05 02:54
luawrapfiles.bytes
d674e2610f6b78d9dafbcabe25edfe70
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14824
2021-11-05 02:54
memorydump.bytes
a62c187a2f9e9586b13fd22553a6bd63
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
5.8
guest
14825
2021-11-05 02:54
typecheck.bytes
584de4e6b6ec0e0dce154120afeb73af
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.2
guest
14826
2021-11-05 02:55
md5.bytes
fe0ce4cafefde55959b6031e0ae32ad7
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14827
2021-11-05 02:56
luawrapfiles.bytes
d674e2610f6b78d9dafbcabe25edfe70
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.8
guest
14828
2021-11-05 02:56
md5.bytes
fe0ce4cafefde55959b6031e0ae32ad7
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14829
2021-11-05 02:57
monitor.bytes
b7b72dea02a7a301ecac42a47ca8f25a
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.2
guest
14830
2021-11-05 02:58
ccronmgr.bytes
b43fe54318c02df6ddad4f168f9ed853
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14831
2021-11-05 02:59
monitor.bytes
b7b72dea02a7a301ecac42a47ca8f25a
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
5.8
guest
14832
2021-11-05 02:59
ccronmgr.bytes
b43fe54318c02df6ddad4f168f9ed853
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
ET INFO TLS Handshake Failure
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
4.2
guest
14833
2021-11-05 03:00
ccronmgrinc.bytes
e42be7d798633f2ba87367b9a1a810cb
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
14834
2021-11-05 03:01
gdprmgr.bytes
7beb256fc9e120d712bcad9977677f72
Create Service
DGA
Socket
Steal credential
DNS
Internet API
Hijack Network
Code injection
Sniff Audio
HTTP
KeyLogger
FTP
Escalate priviledges
Downloader
ScreenShot
Http API
P2P
persistence
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
malicious URLs
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
4.8
guest
14835
2021-11-05 03:01
gdprmgr.bytes
7beb256fc9e120d712bcad9977677f72
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
exploit crash
unpack itself
Windows utilities
Tofsee
Windows
Exploit
DNS
crashed
2
Info
×
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)
ET INFO TLS Handshake Failure
3.8
guest
First
Previous
981
982
983
984
985
986
987
988
989
990
Next
Last
Total : 49,447cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
