Dropped Files | ZeroBOX

Name	44a280749c51af08_8438751.exe Submit file
Filepath	C:\Users\test22\AppData\Roaming\8438751.exe
Size	39.5KB
Processes	1092 (JoSetp.exe)
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`3598180fddc06dbd304b76627143b01d`
SHA1	`1d39b0dd8425359ed94e606cb04f9c5e49ed1899`
SHA256	`44a280749c51af08ff5c1aebcda01c36935f7ecb66d15f57e53c022ce0426bda`
CRC32	`102620B1`
ssdeep	`768:4sXe5FumKYx1ikjmunAurkpPYIjISgdwqpXwBZ7062vrN2eY78qfB:4syFuPYPDnvYpP0i062vrN2eY78u`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware Is_DotNET_EXE - (no description) IsPE32 - (no description)
VirusTotal	Search for analysis

Name	bd0063ce24c5d78d_5819758.exe Submit file
Filepath	C:\Users\test22\AppData\Roaming\5819758.exe
Size	130.0KB
Processes	1092 (JoSetp.exe)
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`3a43e0811f526bf3bfc308849efeac22`
SHA1	`9df9699ff5dd6f2d90a64fb5e18c1f4cd620c232`
SHA256	`bd0063ce24c5d78d55bfdf12902656fa16ed2af218da115dcab903e297ba8c33`
CRC32	`6B34D64A`
ssdeep	`3072:AYFkZoR8SiXU/hct96qWi84AyWqwYJdhc:fOCR8S46E8zyka`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware Is_DotNET_EXE - (no description) IsPE32 - (no description)
VirusTotal	Search for analysis