popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 936d9411d5226b7c_35407796.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\35407796.bat
Size 94.0B
Processes 1348 (bobbyzx.exe) 1240 (cmd.exe)
Type ASCII text, with CRLF, CR line terminators
MD5 3880eeb1c736d853eb13b44898b718ab
SHA1 4eec9d50360cd815211e3c4e6bdd08271b6ec8e6
SHA256 936d9411d5226b7c5a150ecaf422987590a8870c8e095e1caa072273041a86e7
CRC32 88799FC9
ssdeep 3:k4Zoa5/kFWJFFN6dAFZkMFlGl/AVFn:k/0/kFY/NDFZotwFn
Yara None matched
VirusTotal Search for analysis
Name 221f923419186159_bobbyzx.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\bobbyzx.exe
Size 1.4MB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 9a813a694390804d6d8cc05ac1efe79f
SHA1 cc7071c37e771e9e83788b3436a2109402e72a24
SHA256 221f9234191861597cddd0b7ed46d92f05ec2adf3b077abd29e5c60ead2f9cce
CRC32 35236359
ssdeep 12288:j62HNa81TJieSsFbDIqpM+WsIqEtNnOOAR4q1uWmbFT2fXaYRvXxelLb0g8njG9m:ZHcw0fsF49ls3NOAsWmbFT2fXMvOf
Yara
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_EXE - (no description)
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis