popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 2e06591b12f23119_readme.bmp.ecrp
Submit file
Filepath c:\users\test22\pictures\readme.bmp.ecrp
Size 176.0B
Processes 3024 (lbcr.exe)
Type data
MD5 a3ed1a318f247bbc4f43cfcbaa103f53
SHA1 15bd1cdb0f349baeffbb17c9a7a11c31f78fe6f4
SHA256 2e06591b12f23119fbfed7375d597661883d0df273ff5db859b569dac585b16a
CRC32 7321E34F
ssdeep 3:h8M/ZlfQLsGMNUhLVLZaAm12MFuAvOAskJJJlvFtjha/mYle4urrztx3He5CyDy:h8sUlMCVLI12MUAvvdjlvFt8mI5krzt3
Yara None matched
VirusTotal Search for analysis
Name cb2a87f49c2ba445_readme.txt.ecrp
Submit file
Filepath c:\users\test22\desktop\readme.txt.ecrp
Size 176.0B
Processes 3024 (lbcr.exe)
Type data
MD5 5d3660a6a0d21250ec1c6e109ed70b26
SHA1 07b3aac81707733e7ad11f2cc4202e1441f27f81
SHA256 cb2a87f49c2ba445a6f44338623fbea56bae3f10e7cc1c36b4f090ac8a15ebb1
CRC32 80FC82B3
ssdeep 3:h8M/ZlfQLsGMNUhLVLZaAm12MFuAvOAskJJJlvFtjha/mYleFLC4bt4WPxlun:h8sUlMCVLI12MUAvvdjlvFt8mIS24+IS
Yara None matched
VirusTotal Search for analysis
Name 3cded3354fbcfaad_lbcr.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\lbcr.exe
Size 347.0KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 dafc8e7ccd381af36f19267a2a9b3f9b
SHA1 742c9021f4f0fb264c32a59a66e3ac514b8e166b
SHA256 3cded3354fbcfaad7112c599b3622680a632e601602ea4f5faa07a6bcc8cbeaf
CRC32 DCEE51ED
ssdeep 6144:58CS6KWJ0XJWcPZ1PiqbeiS8XDMs9HHCUA:KC9IgWrPiN0YEHHFA
Yara
  • IsPE32 - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis