popup
Dropped Burrfers | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Buffers

Name e60814c8cbc7c436ffd1a8ea5e7cf2d5242104ac
Size 239.0KB
Type data
MD5 f0a567749ae1ef379adc293b1a6e7499
SHA1 e60814c8cbc7c436ffd1a8ea5e7cf2d5242104ac
SHA256 71c4987f9c088470b357ea4926a10c5866d891adacfd9ed39b8652b226478c9e
CRC32 40525809
ssdeep 3072:E6gAUwcwJ4NLaelUICRgSukw5VgFS5Wybl:eAUwcwJ4BVjSukVSo
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Win_Trojan_AgentTesla_M_B_Zero - Win Trojan AgentTesla
VirusTotal Search for analysis
Name b39c1f9d09a586b339a53a77540e5f5292c71097
Size 10.0KB
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 c14ca05a92e136fe0d0c96c58ebb8a11
SHA1 b39c1f9d09a586b339a53a77540e5f5292c71097
SHA256 9c3a7120e337a34b946fc969993c492cec20d3e185c8775b0d4d44cb492d54db
CRC32 1645B255
ssdeep 192:yh/3KDc7OLDuvfjYJ07Az/BAUqy0hoItJUcHE2i/a:E/3KQuDujYJfBAU5dItScHdEa
Yara
  • IsPE32 - (no description)
  • Malicious_Packer_Zero - Malicious Packer
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • Is_DotNET_DLL - (no description)
VirusTotal Search for analysis
Name 8a84f3a910d598bbf300d20d06c3dafbe8fe3cea
Size 425.0KB
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 357bfe3a49ffa0a311cb8b1debd549fc
SHA1 8a84f3a910d598bbf300d20d06c3dafbe8fe3cea
SHA256 65b7a1591846b803bd6314e9f04adeba6d96f4c81c6e90384898d6de9b6103ed
CRC32 1151FDF3
ssdeep 6144:Wct8wC/OxyXQT0SjRYDJ+OnRL6Ov8VR5/E+I3av4tgwpWnKVeDgauDd0:WIhC/OQAQSjM+On96OIvkBeDI0
Yara
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • Is_DotNET_DLL - (no description)
VirusTotal Search for analysis
Name b9df678eb13a8872fd2d5d34f134808af3e5e660
Size 241.5KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 352992111d541f2910d7a649310dfb85
SHA1 b9df678eb13a8872fd2d5d34f134808af3e5e660
SHA256 65426628b5361c8e58fb4c1dac459edc75f8f4253bd8b1765037c9fbccd23101
CRC32 5E0D0CDA
ssdeep 3072:36gAUwcwJ4NLaelUICRgSukw5VgFS5Wyblqo:PAUwcwJ4BVjSukVSoe
Yara
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
  • Malicious_Packer_Zero - Malicious Packer
  • PE_Header_Zero - PE File Signature
  • Win_Trojan_AgentTesla_M_B_Zero - Win Trojan AgentTesla
  • Is_DotNET_EXE - (no description)
  • UPX_Zero - UPX packed file
  • OS_Name_Check_Zero - OS Name Check Signature
  • OS_Memory_Check_Zero - OS Memory Check
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis