popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 01f919894ca23832_ywewleu.yvg
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\ywewleu.yvg
Size 5.8KB
Processes 1904 (ibm_Centos.exe)
Type data
MD5 3db5853607bddd0449498d2eb5f93661
SHA1 ac1992c6eaba6f4f06000b33f019051da40f6cbe
SHA256 01f919894ca2383221fd1b955d8577eb83b95e868cd861f6a588d175df736cab
CRC32 77B21BC1
ssdeep 96:8UfTtXiAlVO0anNiL+ADXu6H6izRMp0R/Yh7edRX8gxj+2D+G/:tTtXiA3d7ulg+pK5jMI9
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nsrC241.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nsrC241.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name b690f9aea0b64bc9_pmnyzulznd.kf
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\pmnyzulznd.kf
Size 263.7KB
Processes 1904 (ibm_Centos.exe)
Type data
MD5 a632929fc2ea6c12d6c0c5b8c9c697d2
SHA1 7cb6434e0bc55f0d2b32e555e99cbb5f0f651760
SHA256 b690f9aea0b64bc929c75633232a302fda1a38e839fa19296ba318eef74b357c
CRC32 32AB533A
ssdeep 6144:dHxDQS0p+KGhJmvRL7TIRpGuZI01IFfpKp1/kZiLQ0v8eiGIezzrUZ5M9M+/tO:nQ5nZ4bGuZIGWR61/kwPIe/m5tj
Yara None matched
VirusTotal Search for analysis
Name b7e6efee8f1c7a8a_bjdisxw.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\nsmC272.tmp\bjdisxw.dll
Size 255.5KB
Processes 1904 (ibm_Centos.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 e0bc4b64ecd0c9c3df778bbe8f5ee0f4
SHA1 fd8a4f7dab49ccc3616a08d80c0cb8a8dd26ce1a
SHA256 b7e6efee8f1c7a8ac1b42a436b03534e03d9ab4693e8aeecfc606126ade42137
CRC32 816FFC1C
ssdeep 6144:EdNd6jY30WcQIz3qZYbN/SkBYaNNsjNW3dFRYvOTvuVLoiQzlp:Ed76jY30vQIz3qZYb5SkBdNNsjNWRYE9
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis