popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name c349ed39e4c04774_momu.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\nsiE2DF.tmp\momu.dll
Size 121.0KB
Processes 2796 (randyzx.exe)
Type PE32 executable (DLL) (native) Intel 80386, for MS Windows
MD5 02d62571cffe41c8d3c6403c3c2a1221
SHA1 3bbf55594c4530dde3bf74a4364d605dd46c1af2
SHA256 c349ed39e4c047742bd9cebf8ad1d9d8a1977335f7cba162b36e4dcc336d1e4a
CRC32 2D8896C4
ssdeep 1536:wvWSLPWT5ORsu0JQaLzCFtXRwwcwIvXAfOnS9cJQ7sWjcdTUOdSKoL0qx2E4Ka:fGuVOypPeJbcy2VJQETUJ0qx2Exa
Yara
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nsxE29F.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nsxE29F.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name b580c67710adea80_rx2cya6auz2d
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\rx2cya6auz2d
Size 210.2KB
Processes 2796 (randyzx.exe)
Type data
MD5 9c59e1394f131ca83e622e8c0f023198
SHA1 bbe38758e9b886df393b8619ca3b769e0029e750
SHA256 b580c67710adea80ad0778f6b98e5dd1a7794fea744624927579e896add3b7a6
CRC32 E3732D40
ssdeep 6144:SCoi7dx9nwtwTAF0rD87E6/7ZwY3JkA9dYjo:dNb9swTAF0UE6/7l3ac8o
Yara None matched
VirusTotal Search for analysis