popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

zW22iRETmqE.dll

Generic Malware PE32 .NET DLL PE File DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Sept. 17, 2021, 10:47 a.m. Sept. 17, 2021, 10:50 a.m.
Size 31.0KB
Type PE32 executable (DLL) (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 c678bbd306d11244564339371a8136ae
SHA256 060485395d240472d829b02d94e16e667d196d0dbba87d62968e0707c882781d
CRC32 4A48F9E8
ssdeep 384:wYRUhlqnpWQkobecS7doVdghKM3A9qrFcwamGKLPVh1kLvL:jRUK8h+e97GVahKMjcBPcoz
PDB Path c:\users\beta\documents\visual studio 2012\Projects\zW22iRETmqE\zW22iRETmqE\obj\Debug\zW22iRETmqE.pdb
Yara
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_DLL - (no description)
  • IsDLL - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path c:\users\beta\documents\visual studio 2012\Projects\zW22iRETmqE\zW22iRETmqE\obj\Debug\zW22iRETmqE.pdb
section .sdata
CAT-QuickHeal Trojan.AgentFC.S22018140
ESET-NOD32 a variant of MSIL/Injector.OBE
ClamAV Win.Trojan.Bulz-9889421-0
Kaspersky HEUR:Trojan.MSIL.Inject.gen
Avast Win32:InjectorX-gen [Trj]
Avira HEUR/AGEN.1143872
AhnLab-V3 Trojan/Win.Generic.C4567460
Malwarebytes Malware.AI.3334713474
AVG Win32:InjectorX-gen [Trj]
Panda Trj/GdSda.A