popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 933722fac65bb4de_dllhost.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\NVIDIA\dllhost.exe
Size 2.5MB
Processes 808 (data64_3.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 6375b46cec76be55885593736cd40270
SHA1 32f7c3c53ab7403ae7e8488f6b93e2fdda39f9ba
SHA256 933722fac65bb4de9beeab946469fb6ba42c187a2ada644f781098320b6770b4
CRC32 334DBCA9
ssdeep 49152:nkTHbXUR67EFhvOJnUvOrraVRUEjXwA5aY2lImsHXRcms0Ab:kvUR60hGdUSrcUnAAoQ0
Yara
  • UPX_Zero - UPX packed file
  • themida_packer - themida packer
  • Is_DotNET_EXE - (no description)
  • anti_vm_detect - Possibly employs anti-virtualization techniques
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis