top title background image
flash

zloader 2_1.0.13.0.exe

Status: finished
Submission Time: 2020-07-19 21:33:39 +02:00
Malicious
Evader

Comments

Tags

  • ZLoader
  • zloader2

Details

  • Analysis ID:
    247363
  • API (Web) ID:
    390351
  • Analysis Started:
    2020-07-20 04:07:32 +02:00
  • Analysis Finished:
    2020-07-20 04:13:48 +02:00
  • MD5:
    07e6b50724981e0c96f7d23f48d309b5
  • SHA1:
    0c012857690e0eebf10eb0ccafcbad9434f99d91
  • SHA256:
    21f41071eb31d4b4f2fb1e5d9be035014b1302313804e46077ca23da0dd30bc8
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
malicious
Score: 100
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious
Score: 54/73
malicious
Score: 12/37
malicious
Score: 25/30
malicious

IPs

IP Country Detection
1.0.13.0
China

Domains

Name IP Detection
fdsjfjdsfjdsjfdjsfh.com
185.236.203.134
kasfajfsafhasfhaf.com
0.0.0.0
dasifosafjasfhasf.com
0.0.0.0

URLs

Name Detection
https://kasfajfsafhasfhaf.com/gate.phpO
https://kasfajfsafhasfhaf.com/gate.php
https://kasfajfsafhasfhaf.com/
Click to see the 6 hidden entries
https://kasfajfsafhasfhaf.com/p
https://kasfajfsafhasfhaf.com/1
https://kasfajfsafhasfhaf.com/gate.phpW
https://kasfajfsafhasfhaf.com/k
https://kasfajfsafhasfhaf.com/F
https://dasifosafjasfhasf.com/

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Roaming\Hiof\diadacf.exe
PE32 executable (GUI) Intel 80386, for MS Windows
#