popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 18101e579338bca2_lieequipment.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\lieequipment.exe
Size 16.5KB
Processes 1156 (djlw_zip.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 1b50dfac3f2bfb78cdf4601b8e1b5c61
SHA1 63c08f6cbc2540e0dd31e6ca0e8d649f26abc57e
SHA256 18101e579338bca278f44f05e1fdb3e7efdd13bc426a37bba23b6217263ebfcb
CRC32 67D8BD3F
ssdeep 384:YxAPkRQ4nxenSIcxFYg/9MxURc/Ho0k4afvniX7Q:U+qxenncxee9dWCvirQ
Yara
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis
Name adb08edeb6ecb032_lieequipment0.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\lieequipment0.exe
Size 16.0KB
Processes 1156 (djlw_zip.exe)
Type PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
MD5 3fbb7eeb588e7f4dfb7226b4c9e3b4eb
SHA1 2741b26fbf15dd3966ccacc70f07abc5fc3787c0
SHA256 adb08edeb6ecb03217dfa385358ade3e984e40ecb379ef1e83cf5ceb133044d1
CRC32 91F1DF4C
ssdeep 384:TxAPkRO3VqSqmoVixY98LdaHW5wHsOk4arvJ+X3T:VUFqSqmoVixw8wwPR+nT
Yara
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • IsPE64 - (no description)
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis