Dropped Burrfers | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.15 01:11
wwbizsrvs.exe
11.15 01:11
op.exe
11.15 01:11
msf.exe
11.15 01:11
lum250.exe
11.15 01:11
msf443.exe
11.13 04:11
hello.exe
11.13 03:11
espsemhvcioff.exe
11.13 02:11
Geek_se.exe
11.13 02:11
cred64.dll
11.13 02:11
svhost.exe

Latest News
11.16 06:11
티오더, 메뉴 사진 무료 촬영 서비스 진행
11.16 06:11
WiFi Status Indicator ...
11.16 06:11
PAN-OS Firewall Vulner...
11.16 06:11
Dahua und Delo vereine...
11.16 05:11
NSO 그룹, 소송 중에도 ‘페가수스’로...
11.16 04:11
Warning: DEEPDATA Malw...
11.16 03:11
It’s a Soldering Iron!...
11.16 12:11
Critical Unauthenticat...
11.16 12:11
BASIC Co-Inventor Thom...
11.16 09:11
존쿡 델리미트 외식 매장서 ‘연말맞이 다...

Dropped Burrfers | ZeroBOX

Name	0065cecff5e1ab2124ee559f2b0504d3d96d47f4
Size	64.0KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`2c1489bb8d482135d9ed03455f02835e`
SHA1	`0065cecff5e1ab2124ee559f2b0504d3d96d47f4`
SHA256	`cead7859e20540d2208007749b69ff5095be0713eb33b0806ff8d5d1e9fcff44`
CRC32	`61B87DD2`
ssdeep	`1536:YbmxWC7anIapWxaJ1FZ5bj5AWz97EncujmtYz2n9bf:bxWC7aOw35AnL2N`
Yara	None matched
VirusTotal	Search for analysis

Name	ee650ae5c802e1a8c8727a42be65c946570ec57e
Size	64.0KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`30b576f0861327714b1cc0e2b8245c2a`
SHA1	`ee650ae5c802e1a8c8727a42be65c946570ec57e`
SHA256	`5c5f34149d45378695d2d34897cb2b3c879a08af54fa1fe900e2c89108d30a93`
CRC32	`3D386562`
ssdeep	`1536:blHSKfoHmymvrCshj08OLE1urvGn+7id9A/Oq:BDfoGHI31zW+md9A5`
Yara	Suspicious_Obfuscation_Script_2 - Suspicious obfuscation script (e.g. executable files)
VirusTotal	Search for analysis

Name	b32c89973df603ea6637c1d6236e7d4cc2e842b1
Size	33.0KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`b0c3d7f81c4d6631228f1c68ff0aa1ae`
SHA1	`b32c89973df603ea6637c1d6236e7d4cc2e842b1`
SHA256	`81ee3c4c6c337e8a28fb2a4ac2ca46b25104a8ec5daeed76763e1703e8356ae1`
CRC32	`C973E438`
ssdeep	`768:ZsLan4SWjmc/a4Sk8OJ+KstgHC4fXGxDJpNDs7ZrrOA3/E+99VqXE3FeNkPZTkq6:ZsL2lci4D1J+K4gVfGbDs7ZrrOA3/T9G`
Yara	Suspicious_Obfuscation_Script_2 - Suspicious obfuscation script (e.g. executable files)
VirusTotal	Search for analysis

Name	ddb5d93d6632e826e978bd94380f4b6ac5050e2e
Size	26.7KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`a01572778b7c036c5753b6e5201cfa42`
SHA1	`ddb5d93d6632e826e978bd94380f4b6ac5050e2e`
SHA256	`489489c8c219f23d6997853c820a214f7606725c11ae0e8ed532706e705ad739`
CRC32	`BC13CCF3`
ssdeep	`768:Tb5cVyQXhkn5jZGfNpT5gdQ1zNlXDlP5qdhSPXsA4Ue:TbQC8fzKw4Ue`
Yara	hide_executable_file - Hide executable file
VirusTotal	Search for analysis

Name	a28855f82bb77ba2cc8736e789c77cb7332e5b89
Size	161.5KB
Type	data
MD5	`e4a7b698d7047f2fd1fbe4fec4c9ca78`
SHA1	`a28855f82bb77ba2cc8736e789c77cb7332e5b89`
SHA256	`60abd44dd360b7bb0eb054a54c1d12fa5aab6a2157bdd3726602fa4e5ea275e6`
CRC32	`1C772AB8`
ssdeep	`3072:5/PL1I5AXMEtPNnGbVhuIusIQG7wDskexfq9/P7:9uALtPNnGbVkvsI+DeI/`
Yara	Malicious_Library_Zero - Malicious_Library
VirusTotal	Search for analysis

Name	c42c3e3e4bf035fb3b6acdf3e0e866d3d37f7cdf
Size	25.6KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`4d7c4f563c22f63d55e19ca79fd88295`
SHA1	`c42c3e3e4bf035fb3b6acdf3e0e866d3d37f7cdf`
SHA256	`d50046abd0b2149f3b8cdaecceeef7ad8084be22a90e3366a0262af3fa64940a`
CRC32	`165DD8C5`
ssdeep	`384:/AWx0dVpBxculMu5Y/+X6gOcKDgXu7hQp6N3u:/x0DNl+g1cgXus6s`
Yara	Suspicious_Obfuscation_Script_2 - Suspicious obfuscation script (e.g. executable files)
VirusTotal	Search for analysis

Name	2ffcb5bbe9e2efbd3f71c92752f26f681f9a72d0
Size	8.4KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`42b80712ae8c3c78bde156d52f095a78`
SHA1	`2ffcb5bbe9e2efbd3f71c92752f26f681f9a72d0`
SHA256	`e042810a50c869c901295ed9a97c2ffffe8dee3e54c3e6d7071abdff3fcc36ae`
CRC32	`66EDAC08`
ssdeep	`192:MyuYKqNFzqTNiz5lqXj0ENCfQoyim3Y4UOgQxIJ1/:iYjjzzz5lqXj0EsfNatHxIJ1/`
Yara	Suspicious_Obfuscation_Script_2 - Suspicious obfuscation script (e.g. executable files) Win_Trojan_Formbook_Zero - Used Formbook
VirusTotal	Search for analysis

Name	94482c8c436dfff66076a77dd5a17e6fbadcda7a
Size	4.0KB
Type	ASCII text, with very long lines, with CRLF line terminators
MD5	`4cdee088ac993b305b305cf8619c701b`
SHA1	`94482c8c436dfff66076a77dd5a17e6fbadcda7a`
SHA256	`d89f8c7320c569896cafa5d757f339cc6d3ebf41d318f07039912eff04489355`
CRC32	`411247B4`
ssdeep	`48:L3dc5KiCzVkd6H7qf4q1QrsZxP+obRInv/ph5pKxIiIhNkmW1+W:Ldc8iCidUqf4q6QrjInvBXpK6iiWmWV`
Yara	None matched
VirusTotal	Search for analysis

Name	aa32baafbacec82e11a0f4c8490bc51e4b9aef5f
Size	4.0KB
Type	ASCII text, with very long lines, with CRLF line terminators
MD5	`5ecaeb19a89e967f13577b29204ecf4a`
SHA1	`aa32baafbacec82e11a0f4c8490bc51e4b9aef5f`
SHA256	`02732352d03cc8766004bffe4617f9afc7350a789cdfcdebc392bf4bb8f821f9`
CRC32	`E26CAFED`
ssdeep	`96:ac8zQ7QdpqfvluL+fQYiEhIS6mBmdvnr7W:atzQEpAqdvm`
Yara	hide_executable_file - Hide executable file
VirusTotal	Search for analysis