popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name d1c286100cf217b1_nvidiadisplaydriverservice.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\NVIDIA Display Driver Service ver9.96\NVIDIADisplayDriverService.exe
Size 128.0MB
Processes 2548 (Stub.exe)
Type PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
MD5 0a3f8a927c913b59825fa658aa7d49ad
SHA1 2abbb4b8e63a65c2b7b502ff7b4d196b4339a6b8
SHA256 1a535f1720c10239326019e1ae428354a4ed0f989d6d40e82135944f1305b91f
CRC32 761E66B1
ssdeep 3145728:qvD6iUC6j67ClR31P+gtrSuUCSK3jtl4x5nrwDj:cD6G69RB9OCSK3Z0nrU
Yara
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
  • Is_DotNET_EXE - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal Search for analysis
Name 85e82b9e9200e798_agiledotnetrt64.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\f0ec8eee-ade2-43df-bb11-fc753ea1d2c1\AgileDotNetRT64.dll
Size 141.8KB
Processes 2548 (Stub.exe)
Type PE32+ executable (DLL) (GUI) x86-64, for MS Windows
MD5 e8641f344213ca05d8b5264b5f4e2dee
SHA1 96729e31f9b805800b2248fd22a4b53e226c8309
SHA256 85e82b9e9200e798e8f434459eacee03ed9818cc6c9a513fe083e72d48884e24
CRC32 B3B84F8F
ssdeep 3072:2vHGxvpTI1xUSnsEYVA+9yaJAUiXbNxqAmi3zGDm/8S:mmwWmrtPTj9jGq/8S
Yara
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature
  • Win32_Trojan_Gen_2_0904B0_Zero - Win32 Trojan Gen
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis
Name c34fe92849b116f4_fa2c2c07f4d56a862adf
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\FA2C2C07F4D56A862ADF
Size 220.0B
Processes 2548 (Stub.exe)
Type ASCII text, with CRLF line terminators
MD5 4962df7c7b3eac65e7c1e0e3c42d79e7
SHA1 9814b95c0bc834ddcce47239118f13a0dd421ddb
SHA256 c34fe92849b116f4c7f550710c8a35e0ac0353d9465a4a8630b6b1dda6941861
CRC32 4BF2F0CA
ssdeep 6:dhwrpoETeyeewWz/cMUCMjO2Ek6hwrpoENXVDQ:fw9ov8pUoeB4w9oP
Yara None matched
VirusTotal Search for analysis