popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a51b5bab04a5b0f5_qcelltypevisible.dll
Submit file
Filepath C:\ProgramData\qCellTypeVisible.dll
Size 175.5KB
Processes 2224 (mshta.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 0b1a2653ee163b6138a01b38b8f6d22a
SHA1 944b6ac504caed72bf2228b43830ac38ffec0221
SHA256 a51b5bab04a5b0f549dd27851e83550a47cd38abd109ee24bc1d96aae089d25c
CRC32 CF82FA8C
ssdeep 3072:0bLeJIBwzBgXbJ26juQdZHT5K4PrsF2ATdwNBJUiG7NNNNNNNNNNNNNNNuTtbXkl:0/e2Gzm1dZtK4Puhha87NNNNNNNNNNNV
Yara
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • Win32_Trojan_Dridex_Gene_Zero - Win32 Trojan Dridex Gene
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis
Name 0c281f1dfe97cc6d_kllistdatatypenumber.sct
Submit file
Filepath C:\ProgramData\klListDataTypeNumber.sct
Size 6.2KB
Processes 2080 (EXCEL.EXE)
Type HTML document, ASCII text, with very long lines, with CRLF line terminators
MD5 93ff6eec9dbda7430e4d4e80cd7636e2
SHA1 96d310b38f06ee8f6ce71387c2c3a42fe677f707
SHA256 0c281f1dfe97cc6d1bce60b25182bc5f7441ca4ed680567cf16657fc04bd09c4
CRC32 0C7B77A7
ssdeep 192:OHic1HicuHicM3HicuHicUHic8HicuHiZOWuHi4wuHicuHicSFcuHiN:OHVHOHqHOH0HcHOHsO/HT9HOHyHHi
Yara None matched
VirusTotal Search for analysis