popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a784d685c99c2dfb_tmp5E57.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp5E57.tmp
Size 1.6KB
Processes 2548 (vbc.exe)
Type XML 1.0 document, ASCII text, with CRLF line terminators
MD5 2ef86f0376da3c5c3a7db81dc04da83c
SHA1 446ad5b64e7914bb0e04cb192428cff81c50d764
SHA256 a784d685c99c2dfb7103e74b67c9a0b0bd9375f5cc3fa46925087a494c1e0427
CRC32 ADE56F35
ssdeep 24:2dH4+SEqCH/7IlNMFQ/rlMhEMjnGpwjpIgUYODOLD9RJh7h8gKBrtn:cbhf7IlNQQ/rydbz9I3YODOLNdq3n
Yara None matched
VirusTotal Search for analysis
Name da56d8f4ee82eaeb_sbhnobg.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\SbhNObg.exe
Size 872.0KB
Processes 2548 (vbc.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 6e4c51c65c966531518f3ace3499ade7
SHA1 79920fbff850c5a632e0e2b43ff400f13a8a6238
SHA256 da56d8f4ee82eaeb593bd5cd320e4d544163c674e26031edb6bd5c409953b2eb
CRC32 1DA2BFBC
ssdeep 12288:9ZGQ4l+T38LYYOyTFW2HqIcUrMQEsVuggBP3ABZbzQLKHdHz0:mQ4S8YzGHGMMQEscggBIBF8KH
Yara
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis