popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 234c8b8c391d17d2_putdemovl.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\putdemovl.exe
Size 128.0MB
Processes 2644 (113.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 bf11161d6f9f9ca43765d007fbb4fce8
SHA1 d1ad6cdd89c252596c82d0c0ea9c4f418e12f995
SHA256 95dde0ed53be8d695156012861ccca304fc42df686ec7f2f23b430b00c0b1ddd
CRC32 596F1520
ssdeep 768:S7oZYb7LjnBfmL6nbBF70pVTF70JmuXJKrPkOyKrPkOH67VuXvKrPsu67xNOuXAp:S8ZYxuLw4sTFDZ773K6BWS41/D7W
Yara
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • Is_DotNET_EXE - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis