popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 4796f50a9d3def85_refno.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\refno.exe
Size 881.5KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 13baeeeb8178269bd06665b3eda11aa6
SHA1 331c45df55d27a8bcd7c37df086627fedc7a9b67
SHA256 4796f50a9d3def8541609e49eecb6edc84da6fa4400fe1c45a7ad0bf8647b6d2
CRC32 CE987E1F
ssdeep 12288:TfCKH3q+/608oHK7zW+kAblo/OPKrembiEn7c9inbqsCDTQopSZzp5CkCSNC86:T96b1Q8O7cobTiTQyUCDR
Yara
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal Search for analysis