popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 17c2979a15186f40_klcylindercol.sct
Submit file
Filepath C:\ProgramData\klCylinderCol.sct
Size 6.1KB
Processes 2080 (EXCEL.EXE)
Type HTML document, ASCII text, with very long lines, with CRLF line terminators
MD5 6266b66d75cc153152d30f7a63452911
SHA1 baea6e86c331aca229b4a30377d2f5ddaa7f147f
SHA256 17c2979a15186f40d2108a415e89e4ca08a125db3b04a85aecd4f149e1f66fa2
CRC32 E4A5D3D8
ssdeep 192:8fHic1HicuHicM3HicuHicUHic8HicuHi7aAuHiIwuHicuHicSFcuHiN:8fHVHOHqHOH0HcHOHWaNHr9HOHyHHi
Yara None matched
VirusTotal Search for analysis
Name 770cb2aa5ea76f90_qsmarttagcontrolbutton.dll
Submit file
Filepath C:\ProgramData\qSmartTagControlButton.dll
Size 176.5KB
Processes 2216 (mshta.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 145c6b9290b6cf598f4995a8a70da916
SHA1 11186a014fadd68d32a7cd76615c088c1adde213
SHA256 770cb2aa5ea76f90e27bc72110b531fa3985ab4352d25362926971285408f148
CRC32 C53F3C0C
ssdeep 3072:lVadvfvemTEtQ9yoZPW/k/nklVtu77wBeZUCEQZRpMBDp57WQhdIif4:qDTyJWPd/nkdqw4/HMB77WQhdIu
Yara
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • Win32_Trojan_Dridex_Gene_Zero - Win32 Trojan Dridex Gene
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis