popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 21b111cbfe6e8fca_ff947dfe
Submit file
Filepath C:\Windows\SysWOW64\FF947DFE
Size 7.0B
Processes 112 (Seel.exe)
Type ASCII text, with no line terminators
MD5 7a1920d61156abc05a60135aefe8bc67
SHA1 808d7dca8a74d84af27a2d6602c3d786de45fe1e
SHA256 21b111cbfe6e8fca2d181c43f53ad548b22e38aca955b9824706a504b0a07a2d
CRC32 2CE33943
ssdeep 3:qR:qR
Yara None matched
VirusTotal Search for analysis
Name 907197572441adc0_seel.exe
Submit file
Filepath C:\Windows\Temp\Seel.exe
Size 192.0KB
Processes 2020 (Semt.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 5b14b65e3d82b9105a6716d57c94b2ab
SHA1 ebdff3e9b9b9ff4d1b62fd0d66238ac76923d6f4
SHA256 907197572441adc0d0f205079b80005e5f484bee40dbdbd25abd65e157b4942b
CRC32 B4CD4BD6
ssdeep 3072:V8B9tMfP9ZGFwgvRLLCzOYFDq+UdnIPPlMzcsofIw+KaX0LcHLkMIIRi:V6M96wgvRHCzOYtqlGyzcsX3KA0LQIQI
Yara
  • PE_Header_Zero - PE File Signature
  • Win_Backdoor_GhostRAT_Zero - Win Backdoor GhostRAT
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name c286536081ae21b1_nw_elf.exe
Submit file
Filepath C:\Windows\Temp\nw_elf.exe
Size 573.6KB
Processes 2020 (Semt.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 b51f17be01243934bd9b507bb3082498
SHA1 9cd50f951518c4ab68d6140663c80d4688849823
SHA256 c286536081ae21b1210e9b2d44cad98ba7849dcfcc1e3c864e9e60216682bd27
CRC32 681ECA7D
ssdeep 6144:zRK2IIXtxecGD13Z+09dAklAbHc0geJWTo+hI//GWlUEJeaZSAET:zRKl8xiDVdAkybHc0jWTo+inGWlde62T
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
VirusTotal Search for analysis