Dropped Burrfers | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.20 01:09
setup.exe
09.20 11:09
3uTools.exe
09.20 11:09
66ecb4573225b_vsbhfdg1...
09.20 10:09
66ecb452ba19c_sfbdsgfd...
09.20 10:09
66ecb44c35444_vfdhsgdf...
09.20 10:09
66ec0e61998bf_setup30.exe
09.20 10:09
66ebf725efe38_lyla.exe
09.20 10:09
Desktop_Explorer.exe
09.20 10:09
66ec3528901bb_winupdat...
09.20 10:09
Inquiry-Dubai.js

Latest News
09.21 12:09
Middle East backdoored...
09.21 12:09
Updated CISA exploited...
09.21 12:09
Several orgs purported...
09.21 12:09
New CISA guidance seek...
09.21 12:09
Lumma Stealer deployed...
09.21 12:09
InfoSec World Intervie...
09.21 12:09
InfoSec World CRTV Liv...
09.21 12:09
FTC: Mass surveillance...
09.21 12:09
Disney reportedly ditc...
09.21 12:09
Dell claimed to be bre...

Dropped Burrfers | ZeroBOX

Name	19a1ae62f85151a1c725c72d53d68fca2229ec70
Size	187.5KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`56722cd9f1bde98c1f38ce344ef40e8d`
SHA1	`19a1ae62f85151a1c725c72d53d68fca2229ec70`
SHA256	`02cb298bbc7003950bfcae54d2f3f7628d378354e3c366b9d5b986040c5e5570`
CRC32	`40D5D064`
ssdeep	`3072:yk9J0KFj5qj6o8KaxfE54HnnGqaKl+b2n8OnW7/zBZFmpKag:ykn/j5K62aOanGqCbA10/zTFAKag`
Yara	Malicious_Library_Zero - Malicious_Library Admin_Tool_IN_Zero - Admin Tool Sysinternals PE_Header_Zero - PE File Signature Antivirus - Contains references to security software IsPE32 - (no description) UPX_Zero - UPX packed file Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	496453b90921b2f466df5740285cb4eb6ebe5186
Size	102.0KB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`367863025d5f685f57a96c36eb66f380`
SHA1	`496453b90921b2f466df5740285cb4eb6ebe5186`
SHA256	`85d41135e1aaa22ba7f3b369fbddc0f77117f2a2680b666396bb606781f435dd`
CRC32	`E4C86190`
ssdeep	`1536:h3+jQ5wRQijrmxmN2sAHeZREtO+9sh3eJG53G73mxdvdqTlU4:lwSyrDssA+/EY6232GhNvMW4`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsDLL - (no description) IsPE32 - (no description) Is_DotNET_DLL - (no description)
VirusTotal	Search for analysis

Name	803fd4ea02093a9587fd1a389a33451187779c75
Size	17.5KB
Type	data
MD5	`efac03ec9288c6d0d9bc77cb06f6f863`
SHA1	`803fd4ea02093a9587fd1a389a33451187779c75`
SHA256	`bff6357c6e4215ab2bf78032fdc753ae6c3e5fa42c93ed965d97fb302d3927ca`
CRC32	`EE536A56`
ssdeep	`192:19e87x6IB0tYump4fSKLBkNQNeWnUVL/l5I2uh/EYGqv1P9gCos9F:X69muc0SKFkaN69nxi/EYJnx`
Yara	Admin_Tool_IN_Zero - Admin Tool Sysinternals
VirusTotal	Search for analysis

Name	73cbf44d70c0a3d828e4a982bbaac7419cb28582
Size	114.0KB
Type	data
MD5	`fd88c7d8dabcf54bcf8314653ee4f7e7`
SHA1	`73cbf44d70c0a3d828e4a982bbaac7419cb28582`
SHA256	`7a81ca4f4e6e114c8502c8d570ebe6c4e2553ded93048e1fedd42e80731696e5`
CRC32	`17D4AEEF`
ssdeep	`3072:4k9J0KFj5qj6o8KaxfE54HnnGqaKl+b2n8:4kn/j5K62aOanGqCbA`
Yara	None matched
VirusTotal	Search for analysis

Name	3d150b315d03983cba8fc9375aa5b547d0e0d8a0
Size	1.5MB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`73b3bda86ed1b17f3149f35bd33f9096`
SHA1	`3d150b315d03983cba8fc9375aa5b547d0e0d8a0`
SHA256	`4e1fc0fdf47367ade433386edafd031b6bba6e371f361733582e7a1f8bd87d58`
CRC32	`3E076E7E`
ssdeep	`49152:5PhDXP8EArNifAp1RIB8t+tvxaRERCUGW:phQpZYRYRPLW`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsDLL - (no description) IsPE32 - (no description) Is_DotNET_DLL - (no description)
VirusTotal	Search for analysis

Name	87daf4e40bd57e6addc3bae2d5704ef412e8f381
Size	52.0KB
Type	data
MD5	`3512672517896c18d6d6bf321439a297`
SHA1	`87daf4e40bd57e6addc3bae2d5704ef412e8f381`
SHA256	`e444baddb5a265499a733109ea9e3f2de63058b7601d2abf41ad378ccc36ed04`
CRC32	`2F2A9D68`
ssdeep	`768:REDDFnSvASKZrI7Fkn0zoPkq2T5EBaho9S4AJKqBz8MZ9GuwaOXB:EnSKZU7FJzkU9EN9S4A3zfO`
Yara	Malicious_Library_Zero - Malicious_Library Antivirus - Contains references to security software Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis