popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 80561be205933727_thotuov.url
Submit file
Filepath C:\Users\Public\Libraries\thotuoV.url
Size 96.0B
Processes 2132 (vbc.exe)
Type MS Windows 95 Internet shortcut text (URL=<file:"C:\\Users\\Public\\Libraries\\Voutoht\\Voutoht.exe">), ASCII text, with CRLF line terminators
MD5 d032e94ad0f1e4f8603f8eb1329beb92
SHA1 12c929397175f1f3a23f243c6d8c7cc340b4128d
SHA256 80561be205933727425eca3daa0331e8d3ff109fdcafb4794b99198e09aa5ae3
CRC32 95532D1D
ssdeep 3:HRAbABGQYmTWAX+rSF55i0XMCEW5TWLAZsGKd6ov:HRYFVmTWDyzqWRW0ZsbDv
Yara None matched
VirusTotal Search for analysis
Name 3f127801208a3596_voutoht.exe
Submit file
Filepath C:\Users\Public\Libraries\Voutoht\Voutoht.exe
Size 938.5KB
Processes 2132 (vbc.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 96bd7548ea9c202bf6add33886f45ddb
SHA1 a4bb35017e1ab69c385dff6aef7f484d61905850
SHA256 3f127801208a3596f363b8c7eaf33edd21e1f74ac2fca102d927dc784811c8f4
CRC32 6B2029AB
ssdeep 24576:nWv+QwSKgQ0qgQDKqOTLDE4b+JlzNgojDGBav:WmWKgNxLQ4ERNRG0
Yara
  • PE_Header_Zero - PE File Signature
  • UPX_Zero - UPX packed file
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis