popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ec705e006b4074a6_qrangeautoformattable1.dll
Submit file
Filepath C:\ProgramData\qRangeAutoFormatTable1.dll
Size 176.5KB
Processes 2224 (mshta.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 fa5ec3e53520d0d4de5e26611b8cd51d
SHA1 6ce8c358ec95955f2816ab1bb376c025ade61922
SHA256 ec705e006b4074a61b4b001660ce083e1948bb7ef17c69a90ad5ef5bb635d132
CRC32 63A13748
ssdeep 3072:0VadvfvemTEtQ9yoZPW/k/nklVtu77wBeZUCEQZRpbBDp57WQhdIif4:tDTyJWPd/nkdqw4/HbB77WQhdIu
Yara
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • Win32_Trojan_Dridex_Gene_Zero - Win32 Trojan Dridex Gene
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis
Name 2c7694742f9fb9dd_kldialogdeleteformat.sct
Submit file
Filepath C:\ProgramData\klDialogDeleteFormat.sct
Size 8.7KB
Processes 2056 (EXCEL.EXE)
Type HTML document, ASCII text, with very long lines, with CRLF line terminators
MD5 8b456844dd984b342462d648348d6e41
SHA1 b1f0e5628bc6a5ded67d2ba843a4b701d44960da
SHA256 2c7694742f9fb9dd2c61fea62054b2acca9dfc458d880723285b02d01b0bf6e8
CRC32 ED6345F2
ssdeep 192:ezuHicuHicuHicuHicuHicuHicuHicuHicuHicuHicuHicuHicuHicuHiVxzuHi7:eKHOHOHOHOHOHOHOHOHOHOHOHOHOHoxB
Yara None matched
VirusTotal Search for analysis