Dropped Burrfers | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

Dropped Burrfers | ZeroBOX

Name	bb6864d66cb1cbe6400ffa03e7f216487856a25c
Size	104.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`027b4b773ab0d89152f5dd397ab1beb3`
SHA1	`bb6864d66cb1cbe6400ffa03e7f216487856a25c`
SHA256	`e22d27f76ae57392ccc096cf840c0501063e3103209b53197176b334fcac56bc`
CRC32	`CD8A0237`
ssdeep	`1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmdv:nSHIG6mQwGmfOQd8YhY0/EqUGv`
Yara	Win32_PWS_Loki_Zero - Win32 PWS Loki PE_Header_Zero - PE File Signature IsPE32 - (no description) Malicious_Packer_Zero - Malicious Packer
VirusTotal	Search for analysis

Name	f3c32dfaa1bd4eea360d8c25abc4b8e50049ac49
Size	13.5KB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`7ac5f00f2307a1f4ef9463be20fb04ea`
SHA1	`f3c32dfaa1bd4eea360d8c25abc4b8e50049ac49`
SHA256	`43e79df88e86f344180041d4a4c9381cc69a8ddb46315afd5c4c3ad9e6268e17`
CRC32	`2C9F48F6`
ssdeep	`384:1b3TJbNAIIS9aAUW4444GPxsmW4444GPxsh08yLj9CSxtGfnQ433:1bjJbNAIIMaAUW4444GPxsmW4444GPx+`
Yara	Is_DotNET_DLL - (no description) IsDLL - (no description) PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis

Name	366115a946523e5c95c7e36e1ee727dedf446b82
Size	16.5KB
Type	data
MD5	`15686b489e8ad18c33f8b12a6e57b4ee`
SHA1	`366115a946523e5c95c7e36e1ee727dedf446b82`
SHA256	`e663608c512eb4871ce31bdc72ef754ed849d135cffc8f27a25baac83371aa20`
CRC32	`31F2E73E`
ssdeep	`192:+EzlC5TW/HOgWauSfdXbi93Bpho6PAuuSqEn33D0UgFxzpXim/uzZwHVNEngM:+oCsuYuSf8A6YSqEHD0U6mdtwHj8gM`
Yara	Win32_PWS_Loki_Zero - Win32 PWS Loki
VirusTotal	Search for analysis

Name	8c24dc2d2df6a1b414e598d93f4100fa4c3032b1
Size	8.0KB
Type	data
MD5	`676e7251f7ca9efa7d489d92c1b26d4c`
SHA1	`8c24dc2d2df6a1b414e598d93f4100fa4c3032b1`
SHA256	`61a2d527a2d6b15e908af543a3c49aa338cddfe7c410649b7a4f883a77b9f6ee`
CRC32	`03A3FDF3`
ssdeep	`3:9aRB0/19111eaaZ1/T71vC1bRlvlBlbohwiTTlS711111111111111111111111K:4Res7+1gf87C8Xv+Xl`
Yara	None matched
VirusTotal	Search for analysis

Name	d518bfe03c5f698187ce716fcd6bf53247fbfad2
Size	78.0KB
Type	data
MD5	`94fa411af1cc6bb168a3ea0e66e80f78`
SHA1	`d518bfe03c5f698187ce716fcd6bf53247fbfad2`
SHA256	`e46762f0c85dbf52e461618fc58d021e2444e3e9e6a989ea7657b66a00287110`
CRC32	`C81C0753`
ssdeep	`1536:3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/Eq:MSHIG6mQwGmfOQd8YhY0/E`
Yara	None matched
VirusTotal	Search for analysis

Name	5b043d65e4b39fac20305cfb671524fa1786d95c
Size	204.0KB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`48579dce190741852dc2e9b978073bbe`
SHA1	`5b043d65e4b39fac20305cfb671524fa1786d95c`
SHA256	`10aeb8b2e334f599f343be7487443fa9993714f4bde0d08908c805c1d6725bea`
CRC32	`5F6D30BF`
ssdeep	`3072:KSc1qKhWhcKYZjqLvxhdeHaled3bNrpCLHj8m4sy+NnuIXM/DksYLXxnbzBdFwnZ:1KSjde2ed5rpCLHxByinuV7k1bznG5j`
Yara	Is_DotNET_DLL - (no description) IsDLL - (no description) Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis