popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 55dd41ba4bc88a80_xydykvt5gpevritka6zttjsk.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\xYDYKVt5gpEvRitKa6ZtTJsk.exe
Size 4.3KB
Processes 2768 (china.png)
Type HTML document, ASCII text
MD5 856e3d6a46440c692eb93ce812d58e2a
SHA1 b41043545e091dc5a9a52ffd7b0d6ba7bf9bf813
SHA256 55dd41ba4bc88a80981e9d96148073788d9996b4c1c65d6fec1189bf9ff0e6dd
CRC32 D54DC007
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsRsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmRsgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_le9bvvjg6osi3fz5ukv9f0lu.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\le9BVVjg6osI3Fz5uKV9f0Lu.exe
Size 494.0KB
Processes 2768 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis
Name 1b202ba1d73cce8a_hzriwqovsprxihkpaxkqqc0r.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\HzRiWqovSPRXihKPaXkQqC0R.exe
Size 4.3KB
Processes 2768 (china.png)
Type HTML document, ASCII text
MD5 b2b09d91c0750da1ed057a0eaaefc5ab
SHA1 10e3ab9d157e4b374988067534ade83b8ac00b86
SHA256 1b202ba1d73cce8a2b19f1ec087d4408b56ed4942e3a924f9d67fe54a6297489
CRC32 2BC99122
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsksgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmksgsfGD
Yara None matched
VirusTotal Search for analysis