Dropped Files | ZeroBOX

Name	cb92f8aecd8b5e12_nvidiadisplaydriverservice.exe Submit file
Filepath	C:\Users\test22\AppData\Roaming\NVIDIA Display Driver Service ver9.96\NVIDIADisplayDriverService.exe
Size	128.0MB
Processes	2140 (Ne82jq7vKJ7NcDn.exe)
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`874bf02a0b964fbb05b74ced6c8254e8`
SHA1	`681880adad47455baff1ae65c8f3683d16ce3ca8`
SHA256	`10fccd1e793638a6bc7259370e5b3dc568fc8579714190d0a652166d55f4f6d1`
CRC32	`83AAA765`
ssdeep	`3145728:LZmyRwmU16HUyiBRcBZI/547x689D5gOjNlUw:LZmowf1yUvRiZs547xDJicNlUw`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware Is_DotNET_EXE - (no description) IsPE32 - (no description) Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal	Search for analysis

Name	22e7520085383a86_d6a4079ed6c5c8a41c8e Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\D6A4079ED6C5C8A41C8E
Size	236.0B
Processes	2140 (Ne82jq7vKJ7NcDn.exe)
Type	ASCII text, with CRLF line terminators
MD5	`9fbc41c425cffbfd7071a39601703cc4`
SHA1	`886fb4f06146353694439446eb0174425ac47629`
SHA256	`22e7520085383a860e7dab8ff5ccee9bed1260137c1a089b7670aa86627221f9`
CRC32	`53EFF97C`
ssdeep	`6:dhwrpoETeyeewWz/cMUCMjO2Ek6hwrpoENC3iKED04:fw9ov8pUoeB4w9ozaD04`
Yara	None matched
VirusTotal	Search for analysis