Dropped Burrfers | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

Dropped Burrfers | ZeroBOX

Name	0189c3113ba02cfe1e1f0d42f678974038f13faa
Size	87.5KB
Type	data
MD5	`ad9ae567cc064317a7c2ae02c99625a6`
SHA1	`0189c3113ba02cfe1e1f0d42f678974038f13faa`
SHA256	`06e85b9e7e024ac77c93f5ffd86c0c5f768e3223759253c37107f5a5032e7e68`
CRC32	`51573692`
ssdeep	`1536:vc15teGWs0ARemYj/AEthK4XsTRoFVyAqikjmBT79P02xhaLrB5CFUf0:45tN0KlYDjthKTTyFVyKTBT7F0MhaLrs`
Yara	None matched
VirusTotal	Search for analysis

Name	20325d4e07ddd04aba0eb6b6e426ab0ca1282420
Size	2.4MB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`6fc5dfa94c6baaf54e5413b643ae72e6`
SHA1	`20325d4e07ddd04aba0eb6b6e426ab0ca1282420`
SHA256	`ee556a159fee1cb48604262ca59aa12928567e78523eed65d31727094ff07925`
CRC32	`9EAE1C88`
ssdeep	`24576:Riz0986q7CoBef8hyCtHqYo2gYdoAwtkVxCW4LUYCSrQsi7RePq+ombS96QX2wr0:Uz090CyWlDM`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature hide_executable_file - Hide executable file Is_DotNET_EXE - (no description) IsPE32 - (no description) Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal	Search for analysis

Name	93dccb3231b9d742fbab620eeb77ff478f9535aa
Size	114.0KB
Type	data
MD5	`6793ac8dfbeede1f1e57e8f7397f0f7f`
SHA1	`93dccb3231b9d742fbab620eeb77ff478f9535aa`
SHA256	`536c19e11808cc399f60a790066fbd83a729e8eadc259772946fac6d7daf4a7a`
CRC32	`81BF2138`
ssdeep	`3072:jzEqV6B1jHa6dtJ10jgvzcgi+oG/j9iaMP2s/HIo:jLV6Bta6dtJmakIM5`
Yara	Malicious_Library_Zero - Malicious_Library
VirusTotal	Search for analysis

Name	bce44c61978f114252d871ae92dbab289fdbe578
Size	80.0KB
Type	data
MD5	`10702208a1995b16273c1897a897cbd7`
SHA1	`bce44c61978f114252d871ae92dbab289fdbe578`
SHA256	`7793c57c0d4b19d67e51fc05ffa9887750fb9e228848f5c06ddb9e0e8eb5898f`
CRC32	`3CB6445D`
ssdeep	`1536:154vu7Vwltqvo7ML7sooEv3nPGr7+mpbXKnVjeZHpKtCKJteGWs0Ao:XkYStqvo7e7soJnur7j7KnRtCKJtN0f`
Yara	None matched
VirusTotal	Search for analysis

Name	4febfe6d9c05069277e68fe86c32e5708a64a372
Size	87.3KB
Type	data
MD5	`7992c8d6e8ad56b8ea822078ae9524ba`
SHA1	`4febfe6d9c05069277e68fe86c32e5708a64a372`
SHA256	`615cceb1bd74dc7a4cbc00f52d3fb7cdfe5019b06a40abc33e5929c8498259c0`
CRC32	`F5DB3A9B`
ssdeep	`1536:hy1rlx0HA9HO7VSH+H79R6R3xeOALYMicpj3eo6jzBeziUTXlQ5rT:hyzxxY7V8y79R6R3MHcMi9o6Pi7IP`
Yara	None matched
VirusTotal	Search for analysis

Name	874b7c3c97cc5b13b9dd172fec5a54bc1f258005
Size	19.5KB
Type	PE32 executable (DLL) (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`bdc8945f1d799c845408522e372d1dbd`
SHA1	`874b7c3c97cc5b13b9dd172fec5a54bc1f258005`
SHA256	`61e9d5c0727665e9ef3f328141397be47c65ed11ab621c644b5bbf1d67138403`
CRC32	`BE3B83AB`
ssdeep	`192:VYLQui6h6p5WW3tZVTnlYJL/eLYLTr2/C8:VYLQu/6/fKqLYLTR`
Yara	PE_Header_Zero - PE File Signature IsDLL - (no description) IsPE32 - (no description) Is_DotNET_DLL - (no description)
VirusTotal	Search for analysis

Name	303b079df64c5245464e913731545c020f4b1e2b
Size	75.9KB
Type	data
MD5	`a97ebddc0dff6429edf697e94bba2396`
SHA1	`303b079df64c5245464e913731545c020f4b1e2b`
SHA256	`d237d81926c0c0f6b4f1dd2680c4c5ef816042ced7a6bf46e75ba3ef23bc25eb`
CRC32	`65E97C4E`
ssdeep	`1536:EemYj/AqthK4XshRoFVyAqiwjmBTTP02xhaLrB5C76PFX:ElYDvthKThyFVyK3BTb0MhaLrB0mP5`
Yara	None matched
VirusTotal	Search for analysis

Name	6991266411e92eda374fd4980ebe3bf1dc5910ac
Size	80.0KB
Type	data
MD5	`3fa35d383d3f31cf0324e02c85b89115`
SHA1	`6991266411e92eda374fd4980ebe3bf1dc5910ac`
SHA256	`5dea8d7bcb85cf5d71d60b778949068d482fac2a177673386ae2c2d17ead48e8`
CRC32	`FF1F4C79`
ssdeep	`1536:RQVRY72y9zdCR+H/PZEoP4SWlGk3MISkFMkkrY2RDbi/TD9xHBMs:GnY72cXZEu4S/HVkFZkro/TD9pas`
Yara	None matched
VirusTotal	Search for analysis

Name	add08793f228effaef6a8d08763d177681177346
Size	76.1KB
Type	data
MD5	`c7ec4a1a746b1e9f238cf2a9f6fc0870`
SHA1	`add08793f228effaef6a8d08763d177681177346`
SHA256	`9cbd2022161d0dcaae8b66fba4e15e42fb68ad222cc83102341185f0ea810888`
CRC32	`638DC5EA`
ssdeep	`1536:B4mec+bP0mokVBtrivB0wNAQ6GmWZBboJHE7VaydnZs3slUYsKaHNpk:umec+pBUvBVaQ6GJZBboqdZiYsKuY`
Yara	None matched
VirusTotal	Search for analysis

Name	874f3caf663265f7dd18fb565d91b7d915031251
Size	98.0KB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`9c8242440c47a4f1ce2e47df3c3ddd28`
SHA1	`874f3caf663265f7dd18fb565d91b7d915031251`
SHA256	`01e3b18bd63981decb384f558f0321346c3334bb6e6f97c31c6c95c4ab2fe354`
CRC32	`EDEEDF40`
ssdeep	`3072:2m7DYfm4SRR+NaVEs+k6kiS+94ERR6gR0bRbD:2IoIRRGaVExfd`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer IsDLL - (no description) IsPE32 - (no description) Is_DotNET_DLL - (no description)
VirusTotal	Search for analysis