popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 8eb3881ba7d320c0_jjroblox.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\jjroblox.exe
Size 692.0KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 2308cedb77f66e4a821d57e8ee1e08a5
SHA1 42ddaf9aef498e366fecdad6b2acbbe9d9d0d47c
SHA256 8eb3881ba7d320c0760042529414e8ee87b8bfc648c34d87dd36ed854b0c8b7b
CRC32 FC226A34
ssdeep 12288:wX2JVHMRtDaSm3TJvVNvWV5YTsY7tHwbz/htfcoCoK632zb7G/QXiU:2ss2Sm39NNv9wY7tHwbzfIoK6MosiU
Yara
  • PE_Header_Zero - PE File Signature
  • Win32_Trojan_Gen_2_0904B0_Zero - Win32 Trojan Gen
  • OS_Processor_Check_Zero - OS Processor Check
  • Generic_Malware_Zero - Generic Malware
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • Malicious_Packer_Zero - Malicious Packer
  • Win_Backdoor_njRAT_Zero - Win Backdoor njRAT
VirusTotal Search for analysis
Name 381bc1886d534d20_nj.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\NJ.EXE
Size 32.0KB
Processes 2972 (jjroblox.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 7033b44842fd35925e857497f9cb1653
SHA1 0db1543f4af1b37e9d3d93b75f5d8329d6337b3f
SHA256 381bc1886d534d20d33107d09b09fd7e4fffba102c0314b6d8359be5ebb6231f
CRC32 AA98675F
ssdeep 384:t0bUe5XB4e0XIgONf3pixEpfHWT6tTUFQqzF1ObbS:+T9BuG13piebbS
Yara
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • IsPE32 - (no description)
  • Is_DotNET_EXE - (no description)
  • Win_Backdoor_njRAT_Zero - Win Backdoor njRAT
VirusTotal Search for analysis