popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 0995e5bcab63116a_bluesubstantial.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\bluesubstantial.exe
Size 6.0MB
Processes 3064 (bluesubstantialie64.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 a97d2a887eb6d38fce468d7f2cffbfdd
SHA1 85dde9df56fef010287124882f6f36d5a6d74bfc
SHA256 0995e5bcab63116a29fdd780273af52de99af8539d859ace9cb301f6deff5d59
CRC32 AD7CDC45
ssdeep 196608:wJRXDiipc2qBYLeU7ZRG1Lx8rVyFyiFTwl:g57rqBK7ZRGR2MFLT
Yara
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name c6dfb0fd354958a3_bluesubstantial0.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\bluesubstantial0.exe
Size 7.0MB
Processes 3064 (bluesubstantialie64.exe)
Type PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
MD5 f75c56db14c39c608dd83af6deec4454
SHA1 5da4b32ab3ec9a1e33aba38ea7577c439c64c532
SHA256 c6dfb0fd354958a3a5d2590f2e2f9e2701bb951eb87487b74a5ea04cfa7165da
CRC32 5B66CEF5
ssdeep 196608:J8NfD8R3kiO5OkvJGW2nFhwqO21N11QmWrEpjFJ:JOv5OKL2rwS1BjF
Yara
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis