popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 68ab9c658f136782_winapp.dll
Submit file
Filepath C:\Users\test22\winapp.dll
Size 786.5KB
Processes 1144 (java.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 2f3c83a9b7d37b99c603a28d09c74cc6
SHA1 697235d82ea9218b2349cb1055276a1ebe96aefd
SHA256 68ab9c658f136782ec8e341d0ad8257989689882cfc03db4cdf719b3a68c8e85
CRC32 486E08CA
ssdeep 12288:UQvWGTLtCQBI4/JCx4EVwUsqx8cx6QVMO207bJ9xjYxYW5xrwythebCG6Qdk49ki:RI4/e4Eu/+x6TmKfheO4w
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • UPX_Zero - UPX packed file
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis
Name 9c12e0229048a238_cce3fe3b0d8d805f.timestamp
Submit file
Filepath C:\ProgramData\Oracle\Java\.oracle_jre_usage\cce3fe3b0d8d805f.timestamp
Size 57.0B
Processes 1144 (java.exe)
Type ASCII text, with CRLF line terminators
MD5 200dacb13f8b36ee9aaba80388d035f9
SHA1 f6d0043914d3a022cc4b45718871c3987a352b24
SHA256 9c12e0229048a23811b5be759a09d31e7b9a17aad4381aa1fba4e962f236040f
CRC32 FD29B81F
ssdeep 3:oFj4I5vpN37WMyn:oJ5X37Y
Yara None matched
VirusTotal Search for analysis