popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 6b05bfa734528454_whjqtvztnnfa.dll
Submit file
Filepath C:\ProgramData\whjqTVzTnnFa.dll
Size 188.0KB
Processes 2116 (mshta.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 d90f515e21c569871da136136e189d4f
SHA1 52ae4968309f74b25911b32e29a013c4c426c2dc
SHA256 6b05bfa734528454ff6486d07a280dc2fdb2ab5baa2a7f48ab4a7e787962f9a7
CRC32 DE98461A
ssdeep 3072:ZWa3N1eqJ7cNe58per6JpynepWHVD9qMe402JYIUk9H8Iz83SWW9klSC:fxwO/Spynep6VDcMeQeIUk9cI6O5
Yara
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 5284d2c2382e406e_oyighoid.sct
Submit file
Filepath C:\ProgramData\OyIGHoID.sct
Size 26.4KB
Processes 2416 (EXCEL.EXE)
Type HTML document, ASCII text, with very long lines, with CRLF line terminators
MD5 a7a70027c73d0df1be59bfa69fbc33c5
SHA1 30b3c70053fefb38dd4118ad83d5b93931d2fd3f
SHA256 5284d2c2382e406e7baed841d063f41f7653124bd923e0397523eb1195d02932
CRC32 E3A9F879
ssdeep 768:2XLIsPodsYnllZXW5TssxmDYa3GA/n/pfLn:209d1n3VWaL12kn/R
Yara None matched
VirusTotal Search for analysis