popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 98da1ec96fd2444a_yes.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\yes.exe
Size 980.0KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 33e5d41c8c70b1b9cf9ed44b5a4db9df
SHA1 292e8f921070534332a4b0dbf7b8c86d761e18ff
SHA256 98da1ec96fd2444a4aa095d87c1346482389eabd517e70ab74577171ffda6937
CRC32 D3E854EA
ssdeep 24576:XYEa5hhwTu4XX6dtdtda3kaRqcZfiposb542C:XYEa5hhwTu0qcZfQJ2T
Yara
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • PE_Header_Zero - PE File Signature
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • anti_vm_detect - Possibly employs anti-virtualization techniques
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis