popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e72f7755595740cd_cniprtspqp7vekw2gkp6u5oa.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\cNiPrtsPqp7VEKw2GKp6U5Oa.exe
Size 4.3KB
Processes 2332 (china.png)
Type HTML document, ASCII text
MD5 d39d717990890b248a9d3531192c5408
SHA1 6b4ce2c8bcb03a082a8e914b73a24c0ecfff2998
SHA256 e72f7755595740cd3ffa3152151d374b20341752f854331c85dc21e5ae5ee157
CRC32 9972F28F
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRs4sgszbGD:1j9jhjYjWK/lyH+kMBRADh/pm4sgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_qygmli9g8iwji0lyx8ri9grf.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\QYgmlI9g8IwJi0lyX8ri9grf.exe
Size 494.0KB
Processes 2332 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis
Name 2933b2e5686ff9c4_cik2n1r8ngkplk6sc7sgn4hu.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\ciK2n1R8ngKPLk6sc7SgN4HU.exe
Size 4.3KB
Processes 2332 (china.png)
Type HTML document, ASCII text
MD5 9a54de2f7d6aa1b19b241a9589cbb918
SHA1 083c5433dec7e95421b123bae3f791789a89e2ab
SHA256 2933b2e5686ff9c4ed2e57b519c86063202990fb93417ded959b2036736af26c
CRC32 17F4F938
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsrsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmrsgsfGD
Yara None matched
VirusTotal Search for analysis