Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.15 01:11
wwbizsrvs.exe
11.15 01:11
op.exe
11.15 01:11
msf.exe
11.15 01:11
lum250.exe
11.15 01:11
msf443.exe
11.13 04:11
hello.exe
11.13 03:11
espsemhvcioff.exe
11.13 02:11
Geek_se.exe
11.13 02:11
cred64.dll
11.13 02:11
svhost.exe

Latest News
11.16 03:11
It’s a Soldering Iron!...
11.16 12:11
Critical Unauthenticat...
11.16 12:11
BASIC Co-Inventor Thom...
11.16 09:11
존쿡 델리미트 외식 매장서 ‘연말맞이 다...
11.16 09:11
서울퓨처랩, 누적체험객 6만명 돌파…프로...
11.16 09:11
니지모리스튜디오 갤러리, 일본 일러스트 ...
11.16 09:11
RISC-V Pushes 400 Mill...
11.16 09:11
IT Sicherheitsnews tae...
11.16 07:11
Anduril’s Chair Consul...
11.16 07:11
Senators Call for Prob...

Summary | ZeroBOX

iqewbieiqbubqw.dll

Generic Malware PE32 .NET DLL PE File DLL

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Aug. 23, 2021, 7:12 p.m.	Aug. 23, 2021, 7:25 p.m.

Size	108.5KB
Type	PE32 executable (DLL) (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`58fab5a273bc3bdca01648663e4f7be2`
SHA256	`26f503859c642343c3fe4c10fbd57277749e2c81ca5ba35d2a2219119dc6e7b9`
CRC32	`79BE7D65`
ssdeep	`1536:ZkXeL723Z+ezIUZCF7TBK2mz17HMPawejcGUqeyUTMbT0LYE0:ZxqZ+EPC7FKh7HMPawejcGveyybLYb`
PDB Path	SteamCloudFileManagerLite.pdb
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware Is_DotNET_DLL - (no description) IsDLL - (no description) IsPE32 - (no description) Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

This executable has a PDB path (1 event)

pdb_path

SteamCloudFileManagerLite.pdb

File has been identified by 3 AntiVirus engines on VirusTotal as malicious (3 events)

Elastic	malicious (high confidence)
Avira	TR/Dropper.Gen
Cynet	Malicious (score: 99)