popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ae8635ca2e1ddd94_wgcluqavfoktdy.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\enjsn\wgcluqavfoktdy.exe
Size 284.2KB
Processes 840 (maigoneo2.1.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
MD5 247054964499405f52185f24b4d011b2
SHA1 a072c1197d90b8113fd0a85bddae0f37fa4d6550
SHA256 ae8635ca2e1ddd94610dfeb8d18ce3e037e890927cb1ba3944bfe4ff70f4ce17
CRC32 58AB2353
ssdeep 6144:AYa6/09Vj/dY0A4fPsfGafr4SM7rshlsdu3F0a6Y98E:AYxKxW0q+dnM2w2s
Yara
  • UPX_Zero - UPX packed file
  • NSIS_Installer - Null Soft Installer
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 51e4d04795f2279b_lfhdv.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\nsfBF07.tmp\lfhdv.dll
Size 255.0KB
Processes 840 (maigoneo2.1.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 f1bb46dc41453cacc8827e1b2e6682d8
SHA1 9fa9230f0bb523ce67cb5432927ba588044106e0
SHA256 51e4d04795f2279b3fce7dd2a31457359cd58db34c60147bb26c87512cff735f
CRC32 2AA52D40
ssdeep 6144:1nqz32YGozQzaUEk6Nt8/Uh7mYkdmTxIUYQ8BWuFLk5rxhS:1A32azQzaUEkit8chyYkdmrYSuFLyhS
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name d8e5037c9e06d247_oglji.mo
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\oglji.mo
Size 118.4KB
Processes 840 (maigoneo2.1.exe)
Type data
MD5 68a3304ebad8b68f7c6596331a965cd9
SHA1 3e5be9f3bc4883ffd59dd8119103e13d98638114
SHA256 d8e5037c9e06d247aaf24dedc29fed6d64b3669fd254aab14422b7e3964eb6b4
CRC32 7F7B882D
ssdeep 3072:tkZJoeAVIs8dWrgFvpVWSg3sKhNv/eRMeSRkVpZjvr:tkJorIs8YiVWp3dn6VskV3T
Yara None matched
VirusTotal Search for analysis
Name 2d822949685ec049_swzmw.eu
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\swzmw.eu
Size 7.7KB
Processes 840 (maigoneo2.1.exe)
Type data
MD5 66c3e68ce32f03d75a055132303a4a23
SHA1 e339a70513a9fcacacb54c4f4b0f5e9d017f3575
SHA256 2d822949685ec0490cd9e20bd80e89db76d394a3f3c211edab2b2be04c5ee8d8
CRC32 900B7376
ssdeep 192:LWTtJD/vGJbz1z8T5abho60qS/po1COvIg/0iAbhjGxZe8wPnqKproS1:KTtJLQb5z8T5abu6pS/a1COvNc/hGuPv
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nsaBEE6.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nsaBEE6.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis