popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 52922a0b3897cff0_6nrew5kxi3esvxhcl1c1mwxp.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\6nreW5KxI3EsvxhCL1C1Mwxp.exe
Size 4.3KB
Processes 2948 (china.png)
Type HTML document, ASCII text
MD5 f346820c1d3644ae854f0d660797b882
SHA1 24c0bf26297d3eb90ae2ba375a21c9e38b532c3f
SHA256 52922a0b3897cff0d6c2f88b1f65821a1d5c11a7e39510eb453fe9caeab297c2
CRC32 CE116677
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsEIBssgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmvBssgs8
Yara None matched
VirusTotal Search for analysis
Name c9d53c1b02da5cab_edmzmv0avsfn03iqxawav1qr.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\eDMZMV0avSFN03IQXAWaV1Qr.exe
Size 4.3KB
Processes 2948 (china.png)
Type HTML document, ASCII text
MD5 2a0cf18e6fcbc22c7acc11e933f6aa33
SHA1 f92cbcb83dfa9ffaab2d1802d9001cbecf0ce73c
SHA256 c9d53c1b02da5cab6b5476f8fd6e9b37a742fcf6e12fda1e8c726ad35fb30a0e
CRC32 ED08FCD1
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsEisgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmnsgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_ajxq3x934fqmfrucrwgoifpl.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\ajXq3x934fQMfRucrWgOifPL.exe
Size 494.0KB
Processes 2948 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis