popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ea2af13a6f237e82_Parameterisation.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Parameterisation.exe
Size 3.3MB
Processes 2840 (fl.exe) 1948 (cmd.exe)
Type PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
MD5 2a0b0cbc43dd5fdbc0c8ec2add863d7e
SHA1 e71551282f684e8cdb74e43f1f1bd342ba9582dc
SHA256 ea2af13a6f237e821c1c900ac29c24bb89374921ff5e709a950c2fe31d62c5e9
CRC32 C0DBD3FF
ssdeep 98304:KIcxkfCcd2WY84rfT1F1CNujhzoHszkX9C:KzkKcj3if5bCg10HszO9
Yara
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
VirusTotal Search for analysis
Name 76f968033aa746d1_fl.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\fl.exe
Size 3.5MB
Processes 2452 (AppLaunch.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, RAR self-extracting archive
MD5 a6c7f2864cd240335939ec3aa33810c8
SHA1 c20c85eb0004401aa2099300020c68869b91fffe
SHA256 76f968033aa746d1e97f509fc8e0dd9085ffbd88225cde1fbc43fc2ac96ef8b0
CRC32 9D8C999F
ssdeep 98304:JFrw/1V3Cx0k0Tn5WdOh6TAL/88Sjlq75PSImM:0vC65O8Sjl61S+
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name e3b0c44298fc1c14___tmp_rar_sfx_access_check_28867343
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\__tmp_rar_sfx_access_check_28867343
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis