Dropped Burrfers | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.20 01:09
setup.exe
09.20 11:09
3uTools.exe
09.20 11:09
66ecb4573225b_vsbhfdg1...
09.20 10:09
66ecb452ba19c_sfbdsgfd...
09.20 10:09
66ecb44c35444_vfdhsgdf...
09.20 10:09
66ec0e61998bf_setup30.exe
09.20 10:09
66ebf725efe38_lyla.exe
09.20 10:09
Desktop_Explorer.exe
09.20 10:09
66ec3528901bb_winupdat...
09.20 10:09
Inquiry-Dubai.js

Latest News
09.21 01:09
Automate detection and...
09.21 01:09
Hackaday Podcast Episo...
09.21 01:09
The Russian Bot Army T...
09.21 01:09
Australia’s Labor Part...
09.21 12:09
Inviting the Public to...
09.21 12:09
How Ransomhub Ransomwa...
09.21 12:09
Middle East backdoored...
09.21 12:09
Updated CISA exploited...
09.21 12:09
Several orgs purported...
09.21 12:09
New CISA guidance seek...

Dropped Burrfers | ZeroBOX

Name	c2057cd2bb818cd1441bec92b5a05d983d813b17
Size	288.0KB
Type	data
MD5	`5c53ae8ec313391b703a076e1309c04f`
SHA1	`c2057cd2bb818cd1441bec92b5a05d983d813b17`
SHA256	`d1fb9711a032e8769f57eb0e5d7d6ba78594c90e5b8d76d670c212e34c59478a`
CRC32	`C5DE9DEB`
ssdeep	`6144:42RCuk+hrlIP/OYdbtNkqZl0Et8uEXE6dJn5H9cIMrHFrvuR28kqyE90X5H:4RukYIP/OYdRNkqZl0Et8uEXE6dl5H98`
Yara	None matched
VirusTotal	Search for analysis

Name	5ac3c9aac3436162546975827fdf10be573efc97
Size	772.5KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`13109723d5341f668069095619d76f91`
SHA1	`5ac3c9aac3436162546975827fdf10be573efc97`
SHA256	`d34d86c6b81d38998f5f3b454aca85f543fabf6c957f7d6c1921fb9ccf4c45d6`
CRC32	`A033151A`
ssdeep	`24576:kRu16WYdRNDl0Et8uEXE6dl5H92r5HAtNYZ:cVNDl0Et8uEXE6ds1HAts`
Yara	UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check anti_vm_detect - Possibly employs anti-virtualization techniques Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE32 - (no description) Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	9f327fa96fb1e2de6128798528de9599481330b9
Size	391.0KB
Type	data
MD5	`531dd2454a4c85bbc243d4e13aa44853`
SHA1	`9f327fa96fb1e2de6128798528de9599481330b9`
SHA256	`1d536a8e1df0f1fd0d66889bb2e547881673f97f4263abe2a7cf763df9f1349a`
CRC32	`0DB9EB7E`
ssdeep	`192:Pzzzzzzzzzzzzzzzzzzz3zzzzzzzzzzzzzzzzzzzzz/zzzzzzzzzzzzzzzzzzzzf:/AAAAAHD3Hd4`
Yara	None matched
VirusTotal	Search for analysis

Name	3eae5a67278944487e94f82b8e9a9d71721c7a16
Size	69.0KB
Type	data
MD5	`0c217f134e19fffbe13337bf1ed12d06`
SHA1	`3eae5a67278944487e94f82b8e9a9d71721c7a16`
SHA256	`75cb549dc3ebf1d2211da94bbee363b2f2b1292f09d165e383ae24cb99fa5565`
CRC32	`56625934`
ssdeep	`1536:+spjoeK9cbrse38hyIauMzRiUyNlc2Mf:vAcbrse38ERuMUUyN62Mf`
Yara	OS_Processor_Check_Zero - OS Processor Check anti_vm_detect - Possibly employs anti-virtualization techniques Malicious_Library_Zero - Malicious_Library
VirusTotal	Search for analysis

Name	8a7a16e1bb29ef6a29ec7e71bdc776d6bdfda170
Size	81.0KB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`4397c9052b70fb3099acf8cd20fe912e`
SHA1	`8a7a16e1bb29ef6a29ec7e71bdc776d6bdfda170`
SHA256	`c4d826191d55cecc547fe51c331bf304c2242eb961c347affe14d9187a3cb821`
CRC32	`27E1EEF7`
ssdeep	`1536:nP6ztpEr7EscYyov1Qpcy7n0nXdhntJgRqBv:ytMtdjtQuFtHJtv`
Yara	Is_DotNET_DLL - (no description) IsDLL - (no description) PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis

Name	b4ad961190ff0c534378a07f22235a4b9aa9f14f
Size	23.5KB
Type	data
MD5	`ca77ed14af35f12b97a77ff01ede070b`
SHA1	`b4ad961190ff0c534378a07f22235a4b9aa9f14f`
SHA256	`760b9f9c38f17292005e4c466f0c1bd9dc59a6b116d9f47db838e483a765eb25`
CRC32	`908A1591`
ssdeep	`384:HElc1d8x3EO55qoI5ASgO72omQD7lIWZt+flpvr+G0o:klM45w+872rU7l/Z8fvy`
Yara	Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis