popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 031287d02b61ebb2_2wemd7v9d65mic0lm4nas2v7.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\2wEMD7V9d65mic0lm4nAs2v7.exe
Size 4.3KB
Processes 2332 (china.png)
Type HTML document, ASCII text
MD5 144317feae251a81457d7aecac6a92d6
SHA1 9399a7745a076bdc118941f14e4f2cbce62f2658
SHA256 031287d02b61ebb22782ca1d48fcc27dc4d794645bd5e007579b64fefd62d4f7
CRC32 4DEA9E46
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRstsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmtsgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_wgeef7bgtjwnyp3kopwpc9tx.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\wgeEf7bGtjwNYp3kOpwpC9tX.exe
Size 494.0KB
Processes 2332 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis
Name aa2b48530673a98a_2rwdkfdlesdnmkzwfac2fclf.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\2RWDkFdLESdnMKzWFac2fCLF.exe
Size 4.3KB
Processes 2332 (china.png)
Type HTML document, ASCII text
MD5 fcda97d86617f10a348c11f6c6b56655
SHA1 274b8379d50151d5505514b1254626bf452082e4
SHA256 aa2b48530673a98ab7019604e2a44f2f551402a1067d925b786d8a8f1b0c9d6a
CRC32 CA7294B4
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRs5sgszbGD:1j9jhjYjWK/lyH+kMBRADh/pm5sgsfGD
Yara None matched
VirusTotal Search for analysis