popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

book.jpg

AsyncRAT PE32 .NET DLL PE File DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 June 1, 2021, 9:25 a.m. June 1, 2021, 9:28 a.m.
Size 2.9MB
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 1db8ea99d5b3309e68f5bc941c3cb738
SHA256 f60f2206408f200da52f4cb7f8535e12450e94fb0b96f513509b3ccc10fe9b2f
CRC32 F8C2384E
ssdeep 24576:q01GaJxve1E8pkCLLe/K43EnnnclQwIqJY0OjklWXQMFBRpm4L/59ah0USm3uwll:q0ckvuV/59a6USdi9Ues6bV6boLO6r
PDB Path New.pdb
Yara
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • Is_DotNET_DLL - (no description)
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path New.pdb
MicroWorld-eScan Trojan.GenericKD.36982643
ALYac Trojan.GenericKD.36982643
Zillya Trojan.Injector.Win32.942082
Sangfor Trojan.Win32.GenericKD.36982643
CrowdStrike win/malicious_confidence_90% (W)
Alibaba Trojan:MSIL/Injector.694806ef
Arcabit Trojan.Generic.D2344F73
ESET-NOD32 a variant of MSIL/Injector.VLU
BitDefender Trojan.GenericKD.36982643
Ad-Aware Trojan.GenericKD.36982643
Sophos Mal/Generic-R
Comodo TrojWare.Win32.UMal.cfglo@0
VIPRE Trojan.Win32.Generic!BT
McAfee-GW-Edition Artemis!Trojan
FireEye Generic.mg.1db8ea99d5b3309e
Emsisoft Trojan.GenericKD.36982643 (B)
Ikarus Trojan.MSIL.Injector
Microsoft Program:Win32/Wacapew.C!ml
AegisLab Trojan.Win32.Generic.4!c
GData Trojan.GenericKD.36982643
McAfee Artemis!1DB8EA99D5B3
MAX malware (ai score=84)
TrendMicro-HouseCall TROJ_GEN.R002H09ES21