Dropped Files | ZeroBOX

Name	51e9acb44814b69e_spool.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\spool.exe
Size	395.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`bd5693ff7ade6c145cece2316064d812`
SHA1	`d0b64677feb51e27134ce367c9aed40d0d59194b`
SHA256	`51e9acb44814b69e368a13bdfb4bab1961647bc7efd78234aefc755a0e3d6479`
CRC32	`DB2D8FCE`
ssdeep	`12288:eQN9iUTzUjd4OctP+2MUdqb72+6hQaKx1O:eQN9i+FpIo02+eCx1O`
Yara	PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis

Name	e66cc5e4286b2ff8_dtldt.exe Submit file
Filepath	C:\Windows\SysWOW64\Dtldt.exe
Size	1.4MB
Processes	9068 (spool.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`a3cb6951e4134c1ae5678ea01b7b9d7a`
SHA1	`edb0a597c777fd3bbfd90d35fd04d793fc84293b`
SHA256	`e66cc5e4286b2ff8f763d095309cba8ed1fdd52614ddb790058e0304fc750ab9`
CRC32	`4FAE20AD`
ssdeep	`12288:eQN9iUTzUjd4OctP+2MUdqb72+6hQaKx1OD:eQN9i+FpIo02+eCx1OD`
Yara	PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis