popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 7c4ec96ba82e79cb_qcolumnthenrow.exe
Submit file
Filepath C:\ProgramData\qColumnThenRow.exe
Size 340.0KB
Processes 1304 (mshta.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 363431c16f8b0a0196b67b11adf75ebd
SHA1 381994e2140ce8d255952d13f05d8d79da1e1c74
SHA256 7c4ec96ba82e79cb37c6829a595dc09b76568a5dadd82c743c3f9a69c985ad83
CRC32 7C935611
ssdeep 6144:IpWMSmgY0IyFpXjsCEqhp3xuo8Pr7Jjc7wPxfC:lHP7LFVst+0oA71+AC
Yara
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis
Name 7676e145db131128_551375.od
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\551375.od
Size 134.0B
Processes 2548 (EXCEL.EXE)
Type ASCII text, with CRLF line terminators
MD5 4bac14773d3d4b4db362e756ba9f4ad7
SHA1 4ebcf19cff33a180ba6c48404eccc1fd652689a2
SHA256 7676e145db13112898d78590c18301d74f67718bec54969b4a7dbe77ab082e22
CRC32 5FE87673
ssdeep 3:OFrpRCMKLovyafNREalYEC9WoIk5zAajEY5RcdBjjSUvv:OKMKcaaYal9oIkkY5KZSQv
Yara None matched
VirusTotal Search for analysis