popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 6e868fc3c9f9ecfe_tmp260C.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp260C.tmp
Size 1.6KB
Processes 1460 (vbc.exe)
Type XML 1.0 document, ASCII text, with CRLF line terminators
MD5 27c53a90c585336bde6c3e1a21ba5077
SHA1 242c76c1c392da16bd2712a6c2b39153dc5f1cf5
SHA256 6e868fc3c9f9ecfe4a85a7cf58a4064d2b8ddc3b8669b925412129b5d6d5aa21
CRC32 E2D323B8
ssdeep 24:2dH4+SEqCH/7IlNMFQ/rlMhEMjnGpwjpIgUYODOLD9RJh7h8gKBcxtn:cbhf7IlNQQ/rydbz9I3YODOLNdq3m
Yara None matched
VirusTotal Search for analysis
Name b5e68dfde79862fb_lstehnidldctpx.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\lSteHNIdlDCTPX.exe
Size 820.5KB
Processes 1460 (vbc.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 a1dd43a9d43a94f384c3cbbec7c36a1d
SHA1 3eaa76904b6a3793d66163bd58f02c72686e3f81
SHA256 b5e68dfde79862fb107a9372253b79ea46d5e615062ad22e4e10bf3b03d125ac
CRC32 B194BFB6
ssdeep 12288:YcG9tXPM4TjN/g6kmBVEkggBP3ABZbzQLKHdHYX:pGX/MN6HVzggBIBF8KHc
Yara
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis