popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name b3e18d1026779e01_ConsoleApp17.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\ConsoleApp17.exe
Size 1.3MB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 0497faff25c24f11d0813f8da6b5c2d7
SHA1 c8be0daa4efdae6d1d7712f4e1e2a94e5608654f
SHA256 b3e18d1026779e01b6bc834a8da488eeb669e5e366ef8d495c109c0f1424d3c1
CRC32 42A6FD79
ssdeep 24576:4wH20Pcntu9H8cXQOoklad/Ipy0kHnd81ERqQjNLBF9oOAlv7AVx0Y:4wH2fuyaC56yLBUW
Yara
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • IsPE32 - (no description)
  • Is_DotNET_EXE - (no description)
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal Search for analysis
Name e1b0c96ba0bdec43_logs.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\remcos\logs.dat
Size 326.0B
Processes 2552 (ConsoleApp17.exe)
Type data
MD5 2468a0b1b4182cdc4f3b2f23d8e0c7ad
SHA1 f984594b89cfc55b1f80991df55ef463ca410523
SHA256 e1b0c96ba0bdec438740ddcf856d15a6fbee567523b9b65523c604250c808c43
CRC32 9AD051CC
ssdeep 6:IlKrtlKS65YcIeeDAlybW/tdbJWEooKl5KUlVLXrgXl1oV:rXwecYbWtWiT8hb2I
Yara None matched
VirusTotal Search for analysis
Name e8eeb82af74bf52c_dismusjtudcqasquwgxonxjwoydytnhqj.vbs
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\dismusjtudcqasquwgxonxjwoydytnhqj.vbs
Size 524.0B
Processes 2552 (ConsoleApp17.exe) 560 (wscript.exe)
Type data
MD5 7ff972eb97013f2c6778b7ad7876ab16
SHA1 24d6616d0516059defd51521a5575b4645358b43
SHA256 e8eeb82af74bf52c1a6cebc36d0be77895985797f99a2de77ac3e428f560ee2c
CRC32 E26DE597
ssdeep 12:xQ4lA2++ugypjBQMPUR9/Q1ruaU0Q3Ds/Q1ruaU09Hz/0aimi:7a2+SD0RucQTLRuc9Aait
Yara None matched
VirusTotal Search for analysis