popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e96098bf017dd927_6476356.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\6476356.exe
Size 129.5KB
Processes 2972 (P2SDus.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 1c7b98262178f389f083dcf8f87d5816
SHA1 9700c37f5beb0571b990f77f503b9a568c3494ab
SHA256 e96098bf017dd927dd2ac1a5836447d268ab0ef0001c08f526bb53ca817514d2
CRC32 39762AD2
ssdeep 3072:MQeQwLYUbNKMuXSi3kIfcAV6ByofW77EQ3db9k/34:MQezLL0l/6AViyofW8ydbW/
Yara
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name b529e11f2a855b7e_5806198.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\5806198.exe
Size 46.5KB
Processes 2972 (P2SDus.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 1d095bc417db73c6bc6e4c4e7b43106f
SHA1 db7e49df1fb5a0a665976f98ff7128aeba40c5f3
SHA256 b529e11f2a855b7e7bca65ac994be9dc81191c7fe1b720addb90b98da33e7fee
CRC32 E5F22171
ssdeep 768:rs4rf6ZwlC767UQlj8jfg6NirlwDmOVmOJGi4qjzYHwlt:r/C76gQp8ZAYiO8k
Yara
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis