popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name d2d5f495be99faf5_svchost.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\windows\svchost.exe
Size 106.5KB
Processes 1080 (microsoft.com)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 1276e815c54ab13a18f21118dd3c6bbb
SHA1 9202801947ebf5b8d5442aaee94d5e32c4c02d20
SHA256 d2d5f495be99faf5dcc31f16b20d08b31802215621595e3ffe3a56a2f69c5817
CRC32 2C8149EF
ssdeep 1536:W85j51OntvCY0GW/DkhglxD4wlfVeE6QlAy8VB9qgCzn6OF8ZJjpIDv:rH4tvCY0G0jEwlkzrVB0gM6C8Z9pID
Yara
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
VirusTotal Search for analysis