popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 48a877dfbd21c959_winlog.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\winlog.exe
Size 1.0MB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 4b233f24f3a1a17bb7e23f49e7589806
SHA1 ea7ed53c65279db216414f02ed3a829c1fb588ea
SHA256 48a877dfbd21c959e248af2669894015cf1d2a8cc5a461cb45df7514d7afb14d
CRC32 5BCD3C0B
ssdeep 24576:n9RPTvNN3X/tst5V9b1Tt5UIYOflrujiVmb0rP2:fPTFN3FsDV9VUITfl6jiZ+
Yara
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • IsPE32 - (no description)
  • IsNET_EXE - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature Zero
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal Search for analysis