popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 4375effcba6110d4_rnwsclhqavf.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\glueai\rnwsclhqavf.exe
Size 168.6KB
Processes 1804 (r8LO6JsBFr.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
MD5 39bd04b9ae7385809776dc4bad0eb9ff
SHA1 50d4091b028c2d49997722682dc3583a9bd0d8b0
SHA256 4375effcba6110d4f5c6d3d7839ef0d1c33b024f802a589af532b969ae679fd4
CRC32 2197237E
ssdeep 3072:XfY/TU9fE9PEtu64bZmCsNs4bqVflVc/nABPTosmBLymfAkyZPqRRG:PYa6/ZmC0qJlVc/ABrosmBzmkXG
Yara
  • UPX_Zero - UPX packed file
  • NSIS_Installer - Null Soft Installer
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name aa438dadcd9a9b5f_jnxnmugvtq.igo
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\jnxnmugvtq.igo
Size 118.1KB
Processes 1804 (r8LO6JsBFr.exe)
Type data
MD5 df4a6751bc316edea7a97218d1f9302d
SHA1 b432a930cf08111d941c7c5d866ec2daed000128
SHA256 aa438dadcd9a9b5ff3145d2f46e878d4a5aede381f3c1f96cc7fcaf24d6c407a
CRC32 B7B58167
ssdeep 3072:LC5IXTZw3t3Vpfg9wCD6ssosAjUR3D8VF3FpEh:mIFiTaD61ejUR3QrLa
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nswC2BE.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nswC2BE.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name b0289a53ed8c0b2b_yzgmy.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\nsbC2DF.tmp\yzgmy.dll
Size 51.5KB
Processes 1804 (r8LO6JsBFr.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 e65f578fba9976d8e2cf81c67c1d2e5b
SHA1 55a579f8a3061a958fd2da8ba80170aaeca9dc57
SHA256 b0289a53ed8c0b2b54f78ab2c8829e7581167102f44b62d47d1e42b0ca210917
CRC32 4A1C4715
ssdeep 768:k1lJQ2m8dO8UayUU8Ksi6zGbYbmEU2v/WANKdIsQymdj2TtVQ98ld7O0oA6C+6SK:clJQ2rsd2bl5Qk2TtexA1+zK
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis