Dropped Burrfers | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.22 06:09
audiodg.exe
09.22 06:09
psfod.exe
09.22 06:09
73EtsZxIoDetWTu.exe
09.22 06:09
otqp9.exe
09.22 06:09
xx.exe
09.22 06:09
fck.exe
09.22 06:09
LummaC222222.exe
09.22 06:09
seethebestwayforunders...
09.22 06:09
Name.exe
09.22 06:09
needmoney.exe

Latest News
09.23 05:09
Hackaday Links: Septem...
09.23 05:09
Fed’s Rate Cut Comes W...
09.23 05:09
Schluss mit Bildmanipu...
09.23 05:09
KI-Hardware: Jony Ive ...
09.23 05:09
KI-Experte Neil Lawren...
09.23 04:09
퓨쳐시스템, 국가형 암호장비 시장 다지고...
09.23 03:09
TSMC, Samsung Weigh Ma...
09.23 03:09
펜타린크, AI 기술 접목한 시스템 접근...
09.23 02:09
파수, 데이터 보호 넘어 AI 활용한 인...
09.23 02:09
Brass Propeller Gets I...

Dropped Burrfers | ZeroBOX

Name	db335e664b249b5c8309cbd6412f305a1fe29832
Size	11.0KB
Type	data
MD5	`420997135b75250cf2faae4359da8233`
SHA1	`db335e664b249b5c8309cbd6412f305a1fe29832`
SHA256	`4e9841c23e3a56cb79154ca1e8b75edced574eab6c84d1ec240bf063c40cd713`
CRC32	`517C4BB2`
ssdeep	`192:Wd/GdSZxOa2egTrPZyacSyi6d7Y2nDIb/:C86hYWk`
Yara	None matched
VirusTotal	Search for analysis

Name	d74f0f196fdcbf79aec7b2b738f48efff6892810
Size	587.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`ad86a5fb6534da5adbc3090236cbaf55`
SHA1	`d74f0f196fdcbf79aec7b2b738f48efff6892810`
SHA256	`682fe1b3ddd4e66e0c3d34c7f5e1193143a1db6d2b7f77bd7f9c918ad5116cc4`
CRC32	`B85DFA9D`
ssdeep	`12288:4DVWiqrJQzSfMhNcPxhR4vK9nKm6NTBEFxCssfqyvHvZ+rC7NLRm7:wylQzGPxhsYb6TSrCsexp+O7e7`
Yara	PE_Header_Zero - PE File Signature Zero OS_Processor_Check_Zero - OS Processor Check Signature Zero network_http - Communications over HTTP screenshot - Take screenshot win_mutex - Create or check mutex win_registry - Affect system registries win_files_operation - Affect private profile Str_Win32_Wininet_Library - Match Windows Inet API library declaration Str_Win32_Internet_API - Match Windows Inet API call Str_Win32_Http_API - Match Windows Http API call IsPE32 - (no description) IsWindowsGUI - (no description) HasRichSignature - Rich Signature Check
VirusTotal	Search for analysis

Name	038afdd7f9e2943bac0240f1670b7fef705d2bb7
Size	76.0KB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`c61d0521ddd00f25b2e9a590a2d082a4`
SHA1	`038afdd7f9e2943bac0240f1670b7fef705d2bb7`
SHA256	`5c4004590eb464a89a39bc3fd7327f53cb4249e85a0cc3ae2dacd6b629d30202`
CRC32	`EF8A51D2`
ssdeep	`1536:VM64+MqlmkFTdWjvJ8LQst8hlSN7NPplcqpZtbN3q/AG1YQWKp:VbPlmkFZWN8LZt8HY7hBNqoG1YQWQ`
Yara	Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT PE_Header_Zero - PE File Signature Zero IsPE32 - (no description) IsNET_DLL - (no description) IsDLL - (no description) IsConsole - (no description)
VirusTotal	Search for analysis

Name	e18b7aad3786f4879d63151a972c28380d11ace5
Size	82.0KB
Type	data
MD5	`95d6824dd41ee56be6e6f6fda6b3ea93`
SHA1	`e18b7aad3786f4879d63151a972c28380d11ace5`
SHA256	`fe165f7e96d3575c5cf1fe7cd85c30b179d1980ef4c3c790029863513ba33e92`
CRC32	`F94F9683`
ssdeep	`768:/qIDWpxC673+WDyQRmAQZq+KcxTW0TBwI5N+Ss2IJH1A8S1Pp9tWv5mHbgRcTWW2:/NDC7NyQRmAf+2uPnso+RPx2dVpSh`
Yara	OS_Processor_Check_Zero - OS Processor Check Signature Zero network_http - Communications over HTTP screenshot - Take screenshot win_mutex - Create or check mutex win_registry - Affect system registries win_files_operation - Affect private profile Str_Win32_Wininet_Library - Match Windows Inet API library declaration Str_Win32_Internet_API - Match Windows Inet API call Str_Win32_Http_API - Match Windows Http API call
VirusTotal	Search for analysis

Name	f70710354505f31da496dcb6ae2bad0814f69fdb
Size	493.0KB
Type	data
MD5	`8e7134888bf034dc9f56f261759dc49f`
SHA1	`f70710354505f31da496dcb6ae2bad0814f69fdb`
SHA256	`e77e6eb1eae01f5f98965b88aeec93b7f17ac6896953f64db602320630794931`
CRC32	`AD0ACEA6`
ssdeep	`12288:IVWiqrJQzSfMhNcPxhR4vK9nKm6NTBEFxCssfqyvHvZ+:MylQzGPxhsYb6TSrCsexp+`
Yara	None matched
VirusTotal	Search for analysis