popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 55997b04c073fa89_obehxfkvxup9qajg5mexg368.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\oBehXfKVXuP9qAjg5mEXg368.exe
Size 4.3KB
Processes 1080 (china.png)
Type HTML document, ASCII text
MD5 9c519d4cc1d7f9ea0112b0e133cbed73
SHA1 14c6c9ad76bcbc46cde581cf31a01ab6383125a5
SHA256 55997b04c073fa89c720474505969f7c2f37268734d0e7ede3fc0fbc53985ead
CRC32 703B8A26
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRs/sgszbGD:1j9jhjYjWK/lyH+kMBRADh/pm/sgsfGD
Yara None matched
VirusTotal Search for analysis
Name f9349585a2393d43_4gglunu5ecpcatnlnwfmnxzn.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\4GGLunU5eCpcatNLnwFmnxZN.exe
Size 494.0KB
Processes 1080 (china.png)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 28345a7bb63babaf99e760965ce493b7
SHA1 7e752390f6ebca4e1e8889302549be4dd0845f62
SHA256 f9349585a2393d4378e283e73fc48d04941666ec0ccae4dd2fb68c2cad7ac9a1
CRC32 1DB82DEF
ssdeep 12288:qpHLo/ADRUoBhT3d7ybbicrZumiAgp+zjgm6sFuMLGx:SroGRU+Fu+clhl/JVuMSx
Yara
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • IsPE32 - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis
Name d2a085c7949fc7d2_oqtxcqkck0lr5nfhmjc25s39.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\oQtxcQKck0LR5NfhmJC25S39.exe
Size 4.3KB
Processes 1080 (china.png)
Type HTML document, ASCII text
MD5 27b36339790f96520d177a180e4875b5
SHA1 6d04d782025a3db87795ef54d35e1a5f671cc1c8
SHA256 d2a085c7949fc7d25a739b6b160d82a9c2f8cd153af156939770fc7b87525bfe
CRC32 B3A1DDDD
ssdeep 96:1j9jwIjYjyDK/DZD8jH+k1CZBvJADh/pRsXsgszbGD:1j9jhjYjWK/lyH+kMBRADh/pmXsgsfGD
Yara None matched
VirusTotal Search for analysis