Dropped Files | ZeroBOX

Name	80db68b4b0216a53_8178908.scr Submit file
Filepath	C:\Users\test22\AppData\Roaming\8178908.scr
Size	67.0KB
Processes	1972 (Dv31BrowInst.exe)
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`9ec6ecf38cb040515dd99edc3e964c10`
SHA1	`96013003c9055983f9e9411613364d6c29169738`
SHA256	`80db68b4b0216a5371497f59d688d88108efe0bbf3d3fea1b969cde9ce8d4168`
CRC32	`34A9B30C`
ssdeep	`1536:4j0pmn2hl/P7r+5WVUj8ljpHkxw3AXWh:A0A8P7r+5YUqFBh`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description) Is_DotNET_EXE - (no description) Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
VirusTotal	Search for analysis

Name	f98981099f8ff7e9_5001427.scr Submit file
Filepath	C:\Users\test22\AppData\Roaming\5001427.scr
Size	204.0KB
Processes	1972 (Dv31BrowInst.exe)
Type	PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`4d07210ba4062e1968d0749933e857e6`
SHA1	`79c39797d7d998980b92f02217df8a89ba57cb56`
SHA256	`f98981099f8ff7e9a74254de241dec5b66ee6770c67e69614192c410a67ed331`
CRC32	`3DD62655`
ssdeep	`6144:Z0XTb32JBLV/Jd/x60pDj5UzhXDYiKbA0:iTbmhf//B5k9C`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description) Is_DotNET_EXE - (no description)
VirusTotal	Search for analysis