popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 840df4513f420aca_msvcr100.dll
Submit file
Filepath C:\ProgramData\MicrosoftMessenge\kzwvfhhq\MSVCR100.dll
Size 700.0KB
Processes 2064 (rundll32.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 23123badbfe3f18420d434d9c979788b
SHA1 fb05b1f4acb0d1ec526f243d7495333002f33ab0
SHA256 840df4513f420acaf1ac2b04be1859c12453ce3c6972979d25ecc7846c9cfe06
CRC32 0B43A767
ssdeep 12288:El8SIGbYHZJ/bElVm//FGD0Ne9YX9MkBPTDyTNf5lCtOm3ROEa0G9q:Y8SIyYHTjA40DWNX9MkJT2pKt/Rw0a
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • UPX_Zero - UPX packed file
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis
Name 7fb09837b08ca8ea_the latest updated report document.doc
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\The Latest Updated Report Document.doc
Size 22.5KB
Processes 2064 (rundll32.exe)
Type Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, Code page: 1252, Template: Normal, Revision Number: 2, Create Time/Date: Sat Jul 24 22:53:00 2021, Last Saved Time/Date: Sat Jul 24 22:53:00 2021, Number of Pages: 1, Number of Words: 26, Number of Characters: 153, Security: 0
MD5 bc576cbfeea87ddfa0336c8576a4181f
SHA1 aa211648894e06bdff96f5e425dce3f3d6f346a4
SHA256 7fb09837b08ca8eab711cb32837e66860d726ceaec6b44d38e9692cc264370fa
CRC32 8159998F
ssdeep 192:fRGGG6/3C8lLZEvA25Rh6/6rrILd/Kf3HO8tynBNGzEk2XraM:ZGGGK45riSUR/8dyHGzhar1
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 9f49411ac0c7612c_msvcr100.dll
Submit file
Filepath C:\ProgramData\MicrosoftMessenge\tscjuzlz\MSVCR100.dll
Size 449.0KB
Processes 2064 (rundll32.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 134fa927d2a49f9ab2a557cf31f0b4d8
SHA1 d3ef2d53d553029531d824e9bd56d47799618a77
SHA256 9f49411ac0c7612c6d44fd44e5afd9ab813c670a7cbb883f8309b74b72dc6b9b
CRC32 4C1559B9
ssdeep 6144:MdoKOHn8ZOMv/ulWrFtdC1Q0qOe9f9YI2fiHa:MG87uAZts1QHsKHa
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • UPX_Zero - UPX packed file
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis
Name 2cbd589f5781c9ab_msvcr100.dll
Submit file
Filepath C:\ProgramData\MicrosoftMessenge\skvdqhhg\MSVCR100.dll
Size 393.0KB
Processes 2064 (rundll32.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 b9238fd15f659837a8ae7764d4fcdfc1
SHA1 ddb058dc7feb06356bfd84c9ad94b0ebe0d31d37
SHA256 2cbd589f5781c9abca4cd69f322ed08c297cae6ce39e6e22d23097f0d5a2f5ae
CRC32 147C5E5B
ssdeep 3072:K+2PG+VNXoVYu9V+fd/eM7GcFW62wSCxyr07CMgkVs+HTpELHwz:qG8N4RV+fd/eM7G6NSC+MwnLHwz
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • UPX_Zero - UPX packed file
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis