popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

hell.dll

Generic Malware Malicious Packer .NET DLL PE File DLL PE32
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Sept. 12, 2021, 2:46 p.m. Sept. 12, 2021, 2:52 p.m.
Size 16.0KB
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 8ee1081cdb755f8bdc9c6bc19d44bee4
SHA256 fc6f922a95f8c286ca88a750910e3b81544f93c628b85656e4be0cee78eea086
CRC32 2EFA2A32
ssdeep 192:SeUXS1d8tKqlY+b8jbNFVROBhevBvtyE1XQyIW1vRYle0NTPuRRmdBXuySd:IC1mtxlY8u7uhevvjXQ8mleJE0yK
PDB Path C:\Users\Lapki\source\repos\RunPE-Method-Bypass-AMSI\tutorial\RunPE\RunPE\obj\Release\RunPE.pdb
Yara
  • Malicious_Packer_Zero - Malicious Packer
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_DLL - (no description)
  • IsDLL - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path C:\Users\Lapki\source\repos\RunPE-Method-Bypass-AMSI\tutorial\RunPE\RunPE\obj\Release\RunPE.pdb
Lionic Trojan.Win32.Bulz.4!c
Elastic malicious (high confidence)
Cynet Malicious (score: 100)
CAT-QuickHeal Trojan.WacatacFC.S21583424
ALYac Gen:Variant.Bulz.612685
Malwarebytes Malware.AI.1763430438
CrowdStrike win/malicious_confidence_80% (W)
BitDefender Gen:Variant.Bulz.612685
K7GW Trojan ( 004df5941 )
K7AntiVirus Trojan ( 004df5941 )
Arcabit Trojan.Bulz.D9594D
Symantec Trojan.Gen.2
ESET-NOD32 a variant of MSIL/Injector.OBE
APEX Malicious
Paloalto generic.ml
ClamAV Win.Trojan.Bulz-9889421-0
Alibaba Trojan:MSIL/Injector.0714da4f
MicroWorld-eScan Gen:Variant.Bulz.612685
Avast Win32:InjectorX-gen [Trj]
Ad-Aware Gen:Variant.Bulz.612685
Emsisoft Gen:Variant.Bulz.612685 (B)
McAfee-GW-Edition GenericRXPT-IV!8EE1081CDB75
FireEye Gen:Variant.Bulz.612685
Sophos Mal/Generic-S
Ikarus Trojan.MSIL.Injector
Avira TR/Injector.uxhum
Antiy-AVL Trojan/Generic.ASMalwS.348F900
Kingsoft Win32.Troj.Generic_a.a.(kcloud)
Microsoft Backdoor:Win32/Bladabindi!ml
GData Gen:Variant.Bulz.612685
AhnLab-V3 Trojan/Win.Generic.C4609777
McAfee GenericRXPT-IV!8EE1081CDB75
MAX malware (ai score=80)
Cylance Unsafe
Yandex Trojan.Injector!2UDpMubq73c
SentinelOne Static AI - Malicious PE
Fortinet MSIL/OBE!tr
AVG Win32:InjectorX-gen [Trj]
MaxSecure Trojan.Malware.1728101.susgen