popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name f5447c22561c0692_sgvedpw.exe
Submit file
Filepath C:\Users\Public\Libraries\Sgvedpw\Sgvedpw.exe
Size 774.0KB
Processes 112 (vbc.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 1e600b33bd5e1420472158c1b2e145a5
SHA1 9c7e3b79da95c8c1159c3d0758c78118f89b0a7e
SHA256 f5447c22561c0692e385ef3c0ef0ed84d4ce35042f0839bddd7de9aeaa1f777a
CRC32 C2B917FE
ssdeep 12288:5siTtPf0MEakNE3XqKkjY2N04kY7CE5L0S4rrMGdMpGyS:KaF0MEakNMrkE2hkY7CE5L0S4PMGdM
Yara
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
  • UPX_Zero - UPX packed file
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis
Name d53c21e63bd22ad9_wpdevgs.url
Submit file
Filepath C:\Users\Public\Libraries\wpdevgS.url
Size 96.0B
Processes 112 (vbc.exe)
Type MS Windows 95 Internet shortcut text (URL=<file:"C:\\Users\\Public\\Libraries\\Sgvedpw\\Sgvedpw.exe">), ASCII text, with CRLF line terminators
MD5 ec23a54111063325972db3391a9aee5d
SHA1 db68315c760b5c9d30d5e8fdfc16eb3108520bd9
SHA256 d53c21e63bd22ad9201130df83b29657319379361564f3408d5cfbf33b4efe37
CRC32 0BD3D722
ssdeep 3:HRAbABGQYmTWAX+rSF55i0XM95LNSsGKd6ov:HRYFVmTWDyzONSsbDv
Yara None matched
VirusTotal Search for analysis