popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name d6ee636453ab3b66_b960ew4ow8h6kmlkjztoyhbn.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\B960Ew4ow8H6KMLkJZtOyhBn.exe
Size 4.3KB
Processes 2216 (china.png)
Type HTML document, ASCII text
MD5 b3c76652e19b84690d9397e3257f8377
SHA1 ed7a6f4a25388ad77f34dc40eeeb0807c0736f34
SHA256 d6ee636453ab3b66ddc695e5eb7d28a0b01186427d0743e90c39dc12dad5bcc5
CRC32 BEC96FC7
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsMsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmMsgsfGD
Yara None matched
VirusTotal Search for analysis
Name 4e7dca0ef71f4725_1rmslgfhowclkjmxkuof3mfn.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\1RMslGfHOWCLKJmXKUof3MfN.exe
Size 4.3KB
Processes 2216 (china.png)
Type HTML document, ASCII text
MD5 58b7e8f90eed3f1817528caa047845d7
SHA1 f25bc480b58300928db45410606ad8328b53e3f3
SHA256 4e7dca0ef71f4725bf6c651c9fc6f987980f8bdd9041aea9b7581f8584c1c65c
CRC32 EF339698
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsAsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmAsgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_vstlwiqwr20budizqowhktrx.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\VstLWiQwR20bUdiZqoWHKtRx.exe
Size 494.0KB
Processes 2216 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis