popup
Dropped Burrfers | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Buffers

Name 92bdbcab1637f1057dfd70ae9fc58dbe309907bb
Size 6.8KB
Type data
MD5 d6d7048311d74d2b91aa7d6b1984850c
SHA1 92bdbcab1637f1057dfd70ae9fc58dbe309907bb
SHA256 8f082dc02a594ab2eed1e857f5294ca1ac022628d2e72caba1c89b022db3dd41
CRC32 1525F662
ssdeep 96:MZEINJPih0wplvpgWYlfJUvg9puZi8L9nsgIDZh4QoNl5inUy+XE6M/xtAz:rINfwplCj9OQoUnU5C/cz
Yara
  • infoStealer_browser_b_Zero - browser info stealer
  • RedLine_Stealer_b_Zero - RedLine stealer
VirusTotal Search for analysis
Name a418aea92de23ff7cb8d878f95d2ec026d89c636
Size 360.0KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 5d3cea443a96626869d23931a14593b2
SHA1 a418aea92de23ff7cb8d878f95d2ec026d89c636
SHA256 95c688cfff6f8e1786b44ff338b50d6874f01938afa26ecb95c193dfac1e99f5
CRC32 9604E18F
ssdeep 6144:DZEWqv69G2tc4InV2871HuYzzTh9Ub+pUN1aPTi:DZEWqZJ4Ihx9Ub+pG
Yara
  • UPX_Zero - UPX packed file
  • MALWARE_Win_VT_RedLine - Detects RedLine infostealer
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • RedLine_Stealer_b_Zero - RedLine stealer
  • ConfuserEx_Zero - Confuser .NET
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 2a6c6ade08624244654f5c0bd97d3ab686290dec
Size 6.8KB
Type data
MD5 ecf810fc72a114398c6831f74022b051
SHA1 2a6c6ade08624244654f5c0bd97d3ab686290dec
SHA256 a62f9e38ae466a306b9a1ee32ba9ec76656482ae2bf3edb943f582e31144b20c
CRC32 A2BBA04B
ssdeep 96:sZ2rIJPih0wplvpgWYlfJUvg9puZi8L9nSPgIDZh4QoNl5inUmg+XE6M/xtA1:brIfwplCj9BAQoUnUmXC/c1
Yara
  • infoStealer_browser_b_Zero - browser info stealer
  • RedLine_Stealer_b_Zero - RedLine stealer
VirusTotal Search for analysis