popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ed48c9e881dbe3d3_ghdjfkg.png
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\ghdjfkg.png
Size 2.0MB
Processes 1960 (xcrypted.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 df361976bdb1cffaa3a544de4764d20e
SHA1 269b4a4bfbf48435cfe4c6c3d6a0f6c2a7a413f9
SHA256 ed48c9e881dbe3d3061b35c6a5afc5a88cb15a7315d79612e29d4c5d497eb735
CRC32 9349275B
ssdeep 49152:AUbowEOvygS7/1sHOqJ02nTPFdRPqxMaiSTq24GjdGS:AUcwti78OqJ7TPBXEjdGS
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
VirusTotal Search for analysis