popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

GymManagementSystem.dll

Generic Malware PE32 .NET DLL PE File DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Oct. 27, 2021, 6:03 p.m. Oct. 27, 2021, 6:05 p.m.
Size 685.0KB
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 c3df5f1eadd40189c6519fa25addeab8
SHA256 207769e3839b969247c2262b218dcfe34bf87d8ece461bf78fe42ab0c55f728c
CRC32 D335017B
ssdeep 12288:aIQFPfU/uYWmv8P5Undz31P1YNJaaSImmKL+jGk3U:rQNc6dP5Unhx1YNJpSIc+jG
PDB Path GymManagementSystem.pdb
Yara
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • IsPE32 - (no description)
  • Is_DotNET_DLL - (no description)
  • IsDLL - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path GymManagementSystem.pdb
MicroWorld-eScan Gen:Variant.Bulz.868954
FireEye Gen:Variant.Bulz.868954
ESET-NOD32 a variant of MSIL/Injector.VBF
BitDefender Gen:Variant.Bulz.868954
Emsisoft Gen:Variant.Bulz.868954 (B)
Arcabit Trojan.Bulz.DD425A
ALYac Gen:Variant.Bulz.868954
MAX malware (ai score=87)
section {u'size_of_data': u'0x000aac00', u'virtual_address': u'0x00002000', u'entropy': 7.585713431885032, u'name': u'.text', u'virtual_size': u'0x000aab94'} entropy 7.58571343189 description A section with a high entropy has been found
entropy 0.99780861943 description Overall entropy of this PE file is high