popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name b672b104c9fdaf5b_0ioes2mfnii69lkbeifzo1gz.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\0IoEs2MfnIi69LKBeIfZo1Gz.exe
Size 4.3KB
Processes 1896 (china.png)
Type HTML document, ASCII text
MD5 387cd185c43ca75792a25ab0b988f0cc
SHA1 10bbf385974b0393e6757888daa5b5d7485b485b
SHA256 b672b104c9fdaf5b7cfbe9184d9e1c89973e0de7746ca83721b505ea377b35ae
CRC32 93A08858
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsJsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmJsgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_c23rfiwqsmkefxbnwjkv3zmh.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\c23RfIWQSmKEFXbnwJKv3zmH.exe
Size 494.0KB
Processes 1896 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis
Name 66387fa8897dc0e6_tt5aq2nek6aocnundskdonfx.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\tt5Aq2nek6aocNunDSkdONFx.exe
Size 4.3KB
Processes 1896 (china.png)
Type HTML document, ASCII text
MD5 2399692776cb40c7ebcbb57726ad1ed4
SHA1 24836c0b2f4e946fac8921427575ac84111a1a18
SHA256 66387fa8897dc0e66792a5a6e8cb25cb3880059819adc67b1edb5caea370b5a2
CRC32 F86E8F48
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsOsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmOsgsfGD
Yara None matched
VirusTotal Search for analysis