popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 1a5a07764cbce283_gyisjg.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\nstBDFD.tmp\gyisjg.dll
Size 159.5KB
Processes 516 (woproz2.1.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 b80e74e48da7222108f4ee977ebaec07
SHA1 52a37241356a4dfe910bd94221cc578c43751d29
SHA256 1a5a07764cbce2832ca619137f015d212824b27424569faa737b58ffc7675bb5
CRC32 63DE8F51
ssdeep 3072:gaY8gelY6VekVWYAA79SdIEwkMO5Oi77cEXlhrdqiGybqY:gP6VrgAGRvMO5XntLri
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 95aea449af146a5d_oktpyienws.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\hmhqavf\oktpyienws.exe
Size 228.1KB
Processes 516 (woproz2.1.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
MD5 9c2b4213a8a1a6ba0dd80dba7c012337
SHA1 a4b67edd84645c05fa2a8d99c48286a98f44db5e
SHA256 95aea449af146a5df5c7af7968d773ad5b8a2ed543d6202b8213abc74b7c87b3
CRC32 AE45E883
ssdeep 6144:gYa6zVLdOSrwVv99xmFCvwqbG9562gf4Jig0:gYnd/w1jxmFDeagfqB0
Yara
  • UPX_Zero - UPX packed file
  • NSIS_Installer - Null Soft Installer
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nseBDEC.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nseBDEC.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 47402c8df75a8be8_zqqrmfzqzep.if
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\zqqrmfzqzep.if
Size 118.3KB
Processes 516 (woproz2.1.exe)
Type data
MD5 380f7d08b743d2105e8c3a101dbc3bdb
SHA1 4811c0698c107d19ef9a7cc1ad53ff8a4016f1a8
SHA256 47402c8df75a8be8442733f2d490361f9e5c865a88f97011182ae474a18a3301
CRC32 C0E37984
ssdeep 3072:hWIOzFANfDcE+ZBEE4cOUqx3wqTPiGFvmOv:AnSNLcjE7cOUoPitW
Yara None matched
VirusTotal Search for analysis