popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

csharp.dll

Generic Malware PE32 .NET DLL PE File DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Aug. 9, 2021, 11:19 p.m. Aug. 9, 2021, 11:26 p.m.
Size 110.5KB
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 b3c0cbd7c18d20146969aef2475a3d73
SHA256 6d3e0b3cc004d708d80969b3d032f42cdb06939c41f96d801d0e1878c8feb635
CRC32 0E287EDE
ssdeep 1536:+XYcqSQTwe4Tdt7dRSy657r2G4z/fDhTWww2uE3an7m7YwLPljcC2A3RQB2:+//OwlTdtCB2G4zX5P3wCEwLljYCR
Yara
  • Generic_Malware_Zero - Generic Malware
  • IsDLL - (no description)
  • Is_DotNET_DLL - (no description)
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section Ryan
ESET-NOD32 a variant of MSIL/Injector.OBE
Sophos BedsProtected (PUA)
FireEye Generic.mg.b3c0cbd7c18d2014
Microsoft Program:Win32/Wacapew.C!ml
Yandex Trojan.AvsArher.bTtlhJ